critical
9.8
CWE
20
Advisory Published
Updated

CVE-2023-20596: Input Validation

First published: Tue Nov 14 2023(Updated: )

Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.

Credit: psirt@amd.com

Affected SoftwareAffected VersionHow to fix
Amd Ryzen 7 5700g Firmware<comboam4v2_1.2.0.b
Amd Ryzen 7 5700g
Amd Ryzen 7 5700ge Firmware<comboam4v2_1.2.0.b
Amd Ryzen 7 5700ge
Amd Ryzen 5 5600g Firmware<comboam4v2_1.2.0.b
Amd Ryzen 5 5600g
Amd Ryzen 5 5600ge Firmware<comboam4v2_1.2.0.b
Amd Ryzen 5 5600ge
Amd Ryzen 3 5300g Firmware<comboam4v2_1.2.0.b
Amd Ryzen 3 5300g
Amd Ryzen 3 5300ge Firmware<comboam4v2_1.2.0.b
Amd Ryzen 3 5300ge
Amd Ryzen 9 7950x3d Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 7950x3d
Amd Ryzen 9 7950x Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 7950x
Amd Ryzen 9 7900x3d Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 7900x3d
Amd Ryzen 9 7900 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 7900
Amd Ryzen 9 7900x Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 7900x
Amd Ryzen 9 Pro 7945 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 9 Pro 7945
Amd Ryzen 7 7800x3d Firmware<comboam5pi_1.0.8.0
Amd Ryzen 7 7800x3d
Amd Ryzen 7 7700x Firmware<comboam5pi_1.0.8.0
Amd Ryzen 7 7700x
Amd Ryzen 7 7700 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 7 7700
Amd Ryzen 7 Pro 7745 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 7 Pro 7745
Amd Ryzen 5 7600x Firmware<comboam5pi_1.0.8.0
Amd Ryzen 5 7600x
Amd Ryzen 5 7600 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 5 7600
Amd Ryzen 5 Pro 7645 Firmware<comboam5pi_1.0.8.0
Amd Ryzen 5 Pro 7645
Amd Ryzen 5 7500f Firmware<comboam5pi_1.0.8.0
Amd Ryzen 5 7500f
Amd Ryzen 9 5980hx Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 9 5980hx
Amd Ryzen 9 5980hs Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 9 5980hs
Amd Ryzen 9 5900hx Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 9 5900hx
Amd Ryzen 9 5900hs Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 9 5900hs
Amd Ryzen 7 5800h Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 7 5800h
Amd Ryzen 7 5800hs Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 7 5800hs
Amd Ryzen 7 5825u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 7 5825u
Amd Ryzen 7 5800u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 7 5800u
Amd Ryzen 5 5600h Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5600h
Amd Ryzen 5 5600hs Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5600hs
Amd Ryzen 5 5625u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5625u
Amd Ryzen 5 5600u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5600u
Amd Ryzen 5 5560u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5560u
Amd Ryzen 5 5500h Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 5 5500h
Amd Ryzen 3 5425u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 3 5425u
Amd Ryzen 3 5400u Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 3 5400u
Amd Ryzen 3 5125c Firmware<cezannepi-fp6_1.0.0.fa
Amd Ryzen 3 5125c
Amd Ryzen 9 6980hx Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 9 6980hx
Amd Ryzen 9 6980hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 9 6980hs
Amd Ryzen 9 6900hx Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 9 6900hx
Amd Ryzen 9 6900hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 9 6900hs
Amd Ryzen 7 6800h Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 6800h
Amd Ryzen 7 6800hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 6800hs
Amd Ryzen 7 6800u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 6800u
Amd Ryzen 5 6600h Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 5 6600h
Amd Ryzen 5 6600hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 5 6600hs
Amd Ryzen 5 6600u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 5 6600u
Amd Ryzen 7 7735hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 7735hs
Amd Ryzen 7 7736u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 7736u
Amd Ryzen 7 7735u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 7 7735u
Amd Ryzen 5 7535hs Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 5 7535hs
Amd Ryzen 5 7535u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 5 7535u
Amd Ryzen 3 7335u Firmware<rembrandtpi-fp7_1.0.0.9b
Amd Ryzen 3 7335u
Amd Ryzen 9 Pro 7940hs Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 9 Pro 7940hs
Amd Ryzen 9 7940h Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 9 7940h
Amd Ryzen 7 Pro 7840hs Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 7 Pro 7840hs
Amd Ryzen 7 7840h Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 7 7840h
Amd Ryzen 7 Pro 7840u Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 7 Pro 7840u
Amd Ryzen 5 Pro 7640hs Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 5 Pro 7640hs
Amd Ryzen 5 7640h Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 5 7640h
Amd Ryzen 5 Pro 7640u Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 5 Pro 7640u
Amd Ryzen 5 Pro 7545u Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 5 Pro 7545u
Amd Ryzen 5 Pro 7540u Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 5 Pro 7540u
Amd Ryzen 3 7440u Firmware<phoenixpi-fp8-fp7_1.0.0.2
Amd Ryzen 3 7440u

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203