cbcvebase.
CVE-2023-20566
published 2023-11-14

CVE-2023-20566: Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

Affected

69 ranges· showing 25
VendorProductVersion rangeFixed in
amd3rd_gen_amd_epyc_processors
amd4th_gen_amd_epyc_processors
amdamd_epyc_embedded_7003
amdamd_epyc_embedded_9003
amdepyc_7203_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7203p_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_72f3_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7303_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7303p_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7313_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7313p_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7343_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7373x_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_73f3_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7413_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7443_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7443p_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7453_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7473x_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_74f3_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7513_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7543_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7543p_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_7573x_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b
amdepyc_75f3_firmware< milanpi_1.0.0.bmilanpi_1.0.0.b

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
osv7.8HIGH