CVE-2023-20571
CVE-2023-20571
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Ciclo de vida
14 nov 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.
Productos afectados
AMD · AMD Ryzen™ 5000 Series Processors with Radeon™ Graphics “Barcelo”AMD · AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics "Rembrandt"AMD · AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R”AMD · AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics “Rembrandt-R”AMD · Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne”AMD · Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne”AMD · Ryzen™ 7000 Series Desktop Processors “Raphael” XD3AMD · Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics “Phoenix” FP7/FP7r2/FP8¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →