CVE-2023-20587
published 2024-02-13CVE-2023-20587: Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI flash potentially leading to arbitrary code execution.
high7.1CVSS 3.1
AVLACLPRLUINSUCHIHAN
Improper
Access Control in System Management Mode (SMM) may allow an attacker access to
the SPI flash potentially leading to arbitrary code execution.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 1st_gen_amd_epyc_processors | — | — |
| amd | 2nd_gen_amd_epyc_processors | — | — |
| amd | 3rd_gen_amd_epyc_processors | — | — |
| amd | 4th_gen_amd_epyc_processors | — | — |
| amd | amd_epyc_embedded_3000 | — | — |
| amd | amd_epyc_embedded_7002 | — | — |
| amd | amd_epyc_embedded_7003 | — | — |
| amd | amd_epyc_embedded_9003 | — | — |