CVE-2023-20594
CVE-2023-20594
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Ciclo de vida
20 sep 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.
Productos afectados
AMD · 3rd Gen AMD EPYC™ ProcessorsAMD · AMD Ryzen™ Embedded 7000AMD · AMD Ryzen™ Embedded V3000AMD · Ryzen™ 3000 Series Desktop Processors “Matisse”AMD · Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” AM4AMD · Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6AMD · Ryzen™ 5000 Series Desktop Processors “Vermeer”AMD · Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne”AMD · Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics "Barcelo"AMD · Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne”AMD · Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”AMD · Ryzen™ 6000 Series Mobile Processors with Radeon™ Graphics "Rembrandt"AMD · Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R”AMD · Ryzen™ 7035 Series Mobile Processors with Radeon™ Graphics "Rembrandt-R"AMD · Ryzen™ Threadripper™ 3000 Series Processors “Castle Peak” HEDTAMD · Ryzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WS SP3AMD · Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →