Page 2 of 13 results (0.002 seconds)

CVSS: 7.8EPSS: 1%CPEs: 110EXPL: 1

CVE-2023-20598

https://notcve.org/view.php?id=CVE-2023-20598

17 Oct 2023 — An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution. Una gestión de privilegios inadecuada en el controlador de gráficos AMD Radeon™ puede permitir que un atacante autenticado cree una solicitud IOCTL para obtener control de E/S sobre puertos de hardware o direcciones físicas arbitrarias, lo que resulta en una ... • https://github.com/H4rk3nz0/CVE-2023-20598-PDFWKRNL • CWE-269: Improper Privilege Management •

CVSS: 7.2EPSS: 0%CPEs: 244EXPL: 0

CVE-2023-20589 – fTPM Voltage Fault Injection

https://notcve.org/view.php?id=CVE-2023-20589

08 Aug 2023 — An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005 •

CVSS: 5.6EPSS: 0%CPEs: 301EXPL: 1

CVE-2023-20569 – amd: Return Address Predictor vulnerability leading to information disclosure

https://notcve.org/view.php?id=CVE-2023-20569

08 Aug 2023 — A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure. Una vulnerabilidad de canal lateral en algunas de las CPU de AMD puede permitir que un atacante influya en la predicción de la dirección de retorno. Esto puede dar lugar a una ejecución especulativa en una dirección controlada por el atacante, lo que podría conducir a l... • http://www.openwall.com/lists/oss-security/2023/08/08/4 • CWE-203: Observable Discrepancy •