high
7.5
Advisory Published
Updated

CVE-2023-20566

First published: Tue Nov 14 2023(Updated: )

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

Credit: psirt@amd.com

Affected SoftwareAffected VersionHow to fix
All of
AMD EPYC 7763 Firmware
AMD EPYC 7763 Firmware<milanpi_1.0.0.b
All of
AMD EPYC 7713P Firmware
AMD EPYC 7713P Firmware<milanpi_1.0.0.b
All of
AMD EPYC 7713
AMD EPYC 7713P Firmware<milanpi_1.0.0.b
All of
amd epyc 7663p
amd epyc 7663p firmware<milanpi_1.0.0.b
All of
AMD EPYC 7663 Firmware
AMD EPYC 7663 Firmware<milanpi_1.0.0.b
All of
amd epyc 7643p
Amd Epyc Server Firmware<milanpi_1.0.0.b
All of
AMD EPYC 7773X
AMD EPYC 7773X Firmware<milanpi_1.0.0.b
All of
AMD EPYC 7643
AMD EPYC 7643 Firmware<milanpi_1.0.0.b
All of
AMD EPYC 7573X Firmware<milanpi_1.0.0.b
AMD EPYC 7573X
All of
AMD EPYC 75F3 Firmware<milanpi_1.0.0.b
AMD EPYC 75F3
All of
AMD EPYC 7543P Firmware<milanpi_1.0.0.b
AMD EPYC 7543P Firmware
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
AMD EPYC 7543 Firmware
All of
AMD EPYC 7513 Firmware<milanpi_1.0.0.b
AMD EPYC 7513
All of
AMD EPYC 7473X Firmware<milanpi_1.0.0.b
AMD EPYC 7473X
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
AMD EPYC 7453
All of
AMD EPYC 74F3 Firmware<milanpi_1.0.0.b
AMD EPYC 74F3
All of
AMD EPYC 7443P Firmware<milanpi_1.0.0.b
AMD EPYC 7443P
All of
AMD EPYC 7443 Firmware<milanpi_1.0.0.b
AMD EPYC 7443
All of
AMD EPYC 7413 Firmware<milanpi_1.0.0.b
AMD EPYC 7413 Firmware
All of
AMD EPYC 7373X Firmware<milanpi_1.0.0.b
AMD EPYC 7373X
All of
AMD EPYC 73F3 Firmware<milanpi_1.0.0.b
AMD EPYC 73F3
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
AMD EPYC 7343
All of
AMD EPYC 7313P Firmware<milanpi_1.0.0.b
AMD EPYC 7313P
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
AMD EPYC 7313P
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
amd epyc 7303p
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
amd epyc 7303
All of
AMD EPYC 72F3 Firmware<milanpi_1.0.0.b
AMD EPYC 72F3 Firmware
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
amd epyc 7203p
All of
Amd Epyc Server Firmware<milanpi_1.0.0.b
amd epyc 7203
All of
AMD EPYC 9654P Firmware<genoapi_1.0.0.7
AMD EPYC 9654P
All of
AMD EPYC 9654 firmware<genoapi_1.0.0.7
AMD EPYC 9654 firmware
All of
AMD EPYC 9634 Firmware<genoapi_1.0.0.7
AMD EPYC 9634 Firmware
All of
AMD EPYC 9554P Firmware<genoapi_1.0.0.7
AMD EPYC 9554P Firmware
All of
AMD EPYC 9554 Firmware<genoapi_1.0.0.7
AMD EPYC 9554
All of
AMD EPYC 9534 Firmware<genoapi_1.0.0.7
AMD EPYC 9534
All of
AMD Epyc 9474F Firmware<genoapi_1.0.0.7
AMD Epyc 9474F Firmware
All of
AMD EPYC 9454P Firmware<genoapi_1.0.0.7
AMD EPYC 9454P
All of
AMD EPYC 9454P Firmware<genoapi_1.0.0.7
AMD EPYC 9454P
All of
AMD EPYC 9374F Firmware<genoapi_1.0.0.7
AMD EPYC 9374F Firmware
All of
AMD EPYC 9354P Firmware<genoapi_1.0.0.7
AMD EPYC 9354P
All of
AMD EPYC 9354 Firmware<genoapi_1.0.0.7
AMD EPYC 9354 Firmware
All of
AMD EPYC 9334 firmware<genoapi_1.0.0.7
AMD EPYC 9334 firmware
All of
AMD EPYC 9274F Firmware<genoapi_1.0.0.7
AMD EPYC 9274F Firmware
All of
AMD EPYC 9254 Firmware<genoapi_1.0.0.7
AMD EPYC 9254
All of
AMD EPYC 9224 Firmware<genoapi_1.0.0.7
AMD EPYC 9224
All of
AMD EPYC 9174F Firmware<genoapi_1.0.0.7
AMD EPYC 9174F
All of
AMD EPYC 9124 Firmware<genoapi_1.0.0.7
AMD EPYC 9124 Firmware
All of
AMD EPYC 9684X Firmware<genoapi_1.0.0.7
AMD EPYC 9684X Firmware
All of
AMD EPYC 9384X Firmware<genoapi_1.0.0.7
AMD EPYC 9384X
All of
AMD EPYC 9184X firmware<genoapi_1.0.0.7
AMD EPYC 9184X
All of
Amd Epyc Server Firmware<genoapi_1.0.0.7
AMD EPYC 9754 Firmware
All of
AMD EPYC 9754S Firmware<genoapi_1.0.0.7
AMD Epyc 9754S
All of
AMD EPYC 9734 Firmware<genoapi_1.0.0.7
AMD EPYC 9734 Firmware
All of
amd epyc 8534p firmware<genoapi_1.0.0.7
amd epyc 8534p
All of
amd epyc 8534pn firmware<genoapi_1.0.0.7
amd epyc 8534pn
All of
amd epyc 8434p firmware<genoapi_1.0.0.7
amd epyc 8434p
All of
Amd Epyc Server Firmware<genoapi_1.0.0.7
amd epyc 8434pn
All of
amd epyc 8324p firmware<genoapi_1.0.0.7
amd epyc 8324p
All of
amd epyc 8324pn firmware<genoapi_1.0.0.7
amd epyc 8324pn
All of
amd epyc 8224p firmware<genoapi_1.0.0.7
amd epyc 8224p
All of
Amd Epyc Server Firmware<genoapi_1.0.0.7
amd epyc 8224pn
All of
amd epyc 8124p firmware<genoapi_1.0.0.7
amd epyc 8124p
All of
amd epyc 8124pn firmware<genoapi_1.0.0.7
amd epyc 8124pn
All of
amd epyc 8024p firmware<genoapi_1.0.0.7
amd epyc 8024p
All of
amd epyc 8024pn firmware<genoapi_1.0.0.7
amd epyc 8024pn

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2023-20566?

    The severity of CVE-2023-20566 is currently categorized as high due to the potential for memory integrity compromise.

  • How do I fix CVE-2023-20566?

    To fix CVE-2023-20566, update the firmware of affected AMD EPYC processors to versions beyond milanpi_1.0.0.b or genoapi_1.0.0.7.

  • What types of AMD processors are affected by CVE-2023-20566?

    CVE-2023-20566 affects multiple AMD EPYC firmware versions, notably those prior to milanpi_1.0.0.b and genoapi_1.0.0.7.

  • What can an attacker achieve by exploiting CVE-2023-20566?

    An attacker exploiting CVE-2023-20566 could potentially compromise the integrity of guest memory on affected systems.

  • Is there a public reference for CVE-2023-20566?

    Yes, additional details about CVE-2023-20566 can be found in the AMD security bulletin related to this vulnerability.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203