Vulnerabilities > CVE-2023-20558 - Unspecified vulnerability in AMD products

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
amd
NVD
Published: 2023-04-02
Updated: 2023-11-07

Summary

Insufficient control flow management in AmdCpmOemSmm may allow a privileged attacker to tamper with the SMM handler potentially leading to an escalation of privileges.

Vulnerable Configurations

Part Description Count
OS
Amd
115
Hardware
Amd
89

References