Shodan
Vulnerabilities
Vulnerable Software
Amd:  Security Vulnerabilities
CVE-2023-20521
TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of service.
CVSS Score
3.3
EPSS Score
0.003
Published
2023-11-14
CVE-2023-20526
Insufficient input validation in the ASP Bootloader may enable a privileged attacker with physical access to expose the contents of ASP memory potentially leading to a loss of confidentiality.
CVSS Score
1.9
EPSS Score
0.003
Published
2023-11-14
CVE-2023-20533
Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.
CVSS Score
6.1
EPSS Score
0.005
Published
2023-11-14
CVE-2023-20563
Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-11-14
CVE-2023-20565
Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVSS Score
7.8
EPSS Score
0.002
Published
2023-11-14
CVE-2023-20566
Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.
CVSS Score
5.3
EPSS Score
0.004
Published
2023-11-14
CVE-2023-20567
Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.
CVSS Score
6.7
EPSS Score
0.002
Published
2023-11-14
CVE-2023-20568
Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch RadeonInstaller.exe without validating the file signature potentially leading to arbitrary code execution.
CVSS Score
6.7
EPSS Score
0.002
Published
2023-11-14
CVE-2023-20571
A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.
CVSS Score
8.1
EPSS Score
0.004
Published
2023-11-14
CVE-2021-26345
Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.
CVSS Score
1.9
EPSS Score
0.004
Published
2023-11-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved