Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-20589

UNKNOWN
Published 2023-08-08T17:04:17.854Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-20589. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description


An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution. 

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

AMD

Ryzen™ 3000 Series Desktop Processors

Affected Versions:

various
AMD

Ryzen™ PRO 3000 Series Desktop Processors

Affected Versions:

various
AMD

Ryzen™ 3000 Series Desktop Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ PRO 3000 Series Processors with Radeon™ Vega Graphics

Affected Versions:

various
AMD

Athlon™ 3000 Series Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Athlon™ PRO 3000 Series Processors with Radeon™ Vega Graphics

Affected Versions:

various
AMD

Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ PRO 4000 Series Desktop Processors

Affected Versions:

various
AMD

Ryzen™ 5000 Series Desktop Processors

Affected Versions:

various
AMD

Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics

Affected Versions:

various

Ryzen™ PRO 5000 Series Desktop Processors

Affected Versions:

various
AMD

Ryzen™ Threadripper™ 2000 Series Processors

Affected Versions:

various
AMD

Ryzen™ Threadripper™ 5000 Series Processors

Affected Versions:

various
AMD

Ryzen™ Threadripper™ 3000 Series Processors

Affected Versions:

various
AMD

Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ 5000 Series Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ PRO 5000 Series Processors

Affected Versions:

various
AMD

Ryzen™ 6000 Series Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ PRO 6000 Series Processors

Affected Versions:

various
AMD

Ryzen™ 7020 Series Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ 7030 Series Processors with Radeon™ Graphics

Affected Versions:

various
AMD

Ryzen™ PRO 7030 Series Processors

Affected Versions:

various
AMD

Ryzen™ 7035 Series Processors with Radeon™ Graphics

Affected Versions:

various

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-p4r5-8jr9-cwgv

Advisory Details

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution. 

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-20589
WEB https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005

Advisory provided by GitHub Security Advisory Database. Published: August 8, 2023, Modified: April 4, 2024

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005
Published: 2023-08-08T17:04:17.854Z
Last Modified: 2024-11-13T15:59:15.464Z
Copied to clipboard!