CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-20587
https://notcve.org/view.php?id=CVE-2023-20587
13 Feb 2024 — Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI flash potentially leading to arbitrary code execution. Un control de acceso inadecuado en el modo de administración del sistema (SMM) puede permitir que un atacante acceda a la memoria flash SPI, lo que podría provocar la ejecución de código arbitrario. Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI flash potentially leading to arbitrary code execution. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31347
https://notcve.org/view.php?id=CVE-2023-31347
13 Feb 2024 — Due to a code bug in Secure_TSC, SEV firmware may allow an attacker with high privileges to cause a guest to observe an incorrect TSC when Secure TSC is enabled potentially resulting in a loss of guest integrity. Debido a un error de código en Secure_TSC, el firmware SEV puede permitir que un atacante con altos privilegios haga que un invitado observe un TSC incorrecto cuando Secure TSC está habilitado, lo que podría provocar una pérdida de integridad del invitado. Due to a code bug in Secure_TSC, SEV firmw... • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 • CWE-682: Incorrect Calculation •
CVSS: 6.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-31346 – kernel: Reserved fields in guest message responses may not be zero initialized
https://notcve.org/view.php?id=CVE-2023-31346
13 Feb 2024 — Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests. No inicializar la memoria en el firmware SEV puede permitir que un atacante privilegiado acceda a datos obsoletos de otros invitados. A flaw was found in some AMD CPUs where the guest message responses have not been zero-initialized. This issue may allow a local attacker with the ability to run arbitrary code on a container or virtual machine to discover sensitive information contained in the... • https://github.com/Freax13/cve-2023-31346-poc • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-284: Improper Access Control •