CVE-2022-23813: Buffer Overflow
First published: Tue Jan 10 2023(Updated: )
The software interfaces to ASP and SMU may not enforce the SNP memory security policy resulting in a potential loss of integrity of guest memory in a confidential compute environment.
Credit: psirt@amd.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| <1.0.0.9 | ||
| Amd Romepi Firmware | <1.0.0.e | |
| Amd Romepi |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-23813.
What is the title of this vulnerability?
The title of this vulnerability is 'The software interfaces to ASP and SMU may not enforce the SNP memory security policy resulting in a…'
What is the severity rating of CVE-2022-23813?
The severity rating of CVE-2022-23813 is medium (5.3).
Which software versions are affected by CVE-2022-23813?
The software versions affected by CVE-2022-23813 are Amd Milanpi-sp3 Firmware up to version 1.0.0.9 and Amd Romepi Firmware up to version 1.0.0.e.
How can I fix the vulnerability in the affected software versions?
To fix the vulnerability in the affected software versions, it is recommended to apply the latest firmware updates provided by AMD.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/amd
- canonical/amd romepi firmware
- canonical/amd romepi