CVE-2023-20531

CVSS V2 None CVSS V3 None
Description
Insufficient bound checks in the SMU may allow an attacker to update the SRAM from/to address space to an invalid value potentially resulting in a denial of service.
Overview
  • CVE ID
  • CVE-2023-20531
  • Assigner
  • psirt@amd.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-11T08:15:14
  • Last Modified Date
  • 2023-01-20T16:35:56
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:amd:epyc_7h12_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7h12:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7f72_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7f72:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7f52_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7f52:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7f32_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7f32:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7742_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7742:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7702p_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7702p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7702_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7702:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7662_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7662:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7642_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7642:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7552_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7552:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7542_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7542:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7532_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7532:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7502p_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7502p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7502_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7502:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7452_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7452:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7402_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7402:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7402p_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7402p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7352_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7352:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7302p_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7302p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7302_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7302:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7282_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7282:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7272_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7272:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7262_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7262:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7252_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7252:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7232p_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7232p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7002_firmware:*:*:*:*:*:*:*:* 1 OR romepi_1.0.0.c
cpe:2.3:h:amd:epyc_7002:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7003_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7003:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7743_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7743:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:* 1 OR milanpi_1.0.0.5
cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:* 0 OR
History
Created Old Value New Value Data Type Notes
2023-01-12 05:17:23 Added to TrackCVE
2023-01-18 12:15:47 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-20 17:13:47 2023-01-20T16:35:56 CVE Modified Date updated
2023-01-20 17:13:47 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-20 17:13:47 Weakness Enumeration new
2023-01-20 17:13:50 CPE Information updated