// For flags

CVE-2023-20588

Speculative Leaks

Severity Score

5.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

Un error de división por cero en algunos procesadores AMD puede potencialmente devolver datos especulativos que resulten en una pérdida de confidencialidad.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2022-10-27 CVE Reserved
  • 2023-08-08 CVE Published
  • 2024-10-17 CVE Updated
  • 2024-11-12 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-369: Divide By Zero
CAPEC
References (28)
URL Tag Source
http://www.openwall.com/lists/oss-security/2023/09/25/3 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/25/4 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/25/5 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/25/7 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/25/8 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/26/5 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/26/8 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/26/9 Mailing List
http://www.openwall.com/lists/oss-security/2023/09/27/1 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/12 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/13 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/14 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/15 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/16 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/03/9 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/04/1 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/04/2 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/04/3 Mailing List
http://www.openwall.com/lists/oss-security/2023/10/04/4 Mailing List
http://xenbits.xen.org/xsa/advisory-439.html Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3 Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5 Mailing List
https://security.netapp.com/advisory/ntap-20240531-0005
https://www.debian.org/security/2023/dsa-5480 Third Party Advisory
https://www.debian.org/security/2023/dsa-5492 Third Party Advisory
URL Date SRC
URL Date SRC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Amd
Search vendor "Amd"
Epyc 7351p Firmware
Search vendor "Amd" for product "Epyc 7351p Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7351p
Search vendor "Amd" for product "Epyc 7351p"
--
Safe
Amd
Search vendor "Amd"
Epyc 7401p Firmware
Search vendor "Amd" for product "Epyc 7401p Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7401p
Search vendor "Amd" for product "Epyc 7401p"
--
Safe
Amd
Search vendor "Amd"
Epyc 7551p Firmware
Search vendor "Amd" for product "Epyc 7551p Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7551p
Search vendor "Amd" for product "Epyc 7551p"
--
Safe
Amd
Search vendor "Amd"
Epyc 7251 Firmware
Search vendor "Amd" for product "Epyc 7251 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7251
Search vendor "Amd" for product "Epyc 7251"
--
Safe
Amd
Search vendor "Amd"
Epyc 7261 Firmware
Search vendor "Amd" for product "Epyc 7261 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7261
Search vendor "Amd" for product "Epyc 7261"
--
Safe
Amd
Search vendor "Amd"
Epyc 7281 Firmware
Search vendor "Amd" for product "Epyc 7281 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7281
Search vendor "Amd" for product "Epyc 7281"
--
Safe
Amd
Search vendor "Amd"
Epyc 7301 Firmware
Search vendor "Amd" for product "Epyc 7301 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7301
Search vendor "Amd" for product "Epyc 7301"
--
Safe
Amd
Search vendor "Amd"
Epyc 7351 Firmware
Search vendor "Amd" for product "Epyc 7351 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7351
Search vendor "Amd" for product "Epyc 7351"
--
Safe
Amd
Search vendor "Amd"
Epyc 7371 Firmware
Search vendor "Amd" for product "Epyc 7371 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7371
Search vendor "Amd" for product "Epyc 7371"
--
Safe
Amd
Search vendor "Amd"
Epyc 7401 Firmware
Search vendor "Amd" for product "Epyc 7401 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7401
Search vendor "Amd" for product "Epyc 7401"
--
Safe
Amd
Search vendor "Amd"
Epyc 7451 Firmware
Search vendor "Amd" for product "Epyc 7451 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7451
Search vendor "Amd" for product "Epyc 7451"
--
Safe
Amd
Search vendor "Amd"
Epyc 7501 Firmware
Search vendor "Amd" for product "Epyc 7501 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7501
Search vendor "Amd" for product "Epyc 7501"
--
Safe
Amd
Search vendor "Amd"
Epyc 7551 Firmware
Search vendor "Amd" for product "Epyc 7551 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7551
Search vendor "Amd" for product "Epyc 7551"
--
Safe
Amd
Search vendor "Amd"
Epyc 7571 Firmware
Search vendor "Amd" for product "Epyc 7571 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7571
Search vendor "Amd" for product "Epyc 7571"
--
Safe
Amd
Search vendor "Amd"
Epyc 7601 Firmware
Search vendor "Amd" for product "Epyc 7601 Firmware"
--
Affected
in Amd
Search vendor "Amd"
Epyc 7601
Search vendor "Amd" for product "Epyc 7601"
--
Safe
Amd
Search vendor "Amd"
Ryzen 5 Pro 3400g Firmware
Search vendor "Amd" for product "Ryzen 5 Pro 3400g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 5 Pro 3400g
Search vendor "Amd" for product "Ryzen 5 Pro 3400g"
--
Safe
Amd
Search vendor "Amd"
Ryzen 5 3400g Firmware
Search vendor "Amd" for product "Ryzen 5 3400g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 5 3400g
Search vendor "Amd" for product "Ryzen 5 3400g"
--
Safe
Amd
Search vendor "Amd"
Ryzen 5 Pro 3400ge Firmware
Search vendor "Amd" for product "Ryzen 5 Pro 3400ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 5 Pro 3400ge
Search vendor "Amd" for product "Ryzen 5 Pro 3400ge"
--
Safe
Amd
Search vendor "Amd"
Ryzen 5 Pro 3350g Firmware
Search vendor "Amd" for product "Ryzen 5 Pro 3350g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 5 Pro 3350g
Search vendor "Amd" for product "Ryzen 5 Pro 3350g"
--
Safe
Amd
Search vendor "Amd"
Ryzen 5 Pro 3350ge Firmware
Search vendor "Amd" for product "Ryzen 5 Pro 3350ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 5 Pro 3350ge
Search vendor "Amd" for product "Ryzen 5 Pro 3350ge"
--
Safe
Amd
Search vendor "Amd"
Ryzen 3 Pro 3200g Firmware
Search vendor "Amd" for product "Ryzen 3 Pro 3200g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 3 Pro 3200g
Search vendor "Amd" for product "Ryzen 3 Pro 3200g"
--
Safe
Amd
Search vendor "Amd"
Ryzen 3 3200g Firmware
Search vendor "Amd" for product "Ryzen 3 3200g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 3 3200g
Search vendor "Amd" for product "Ryzen 3 3200g"
--
Safe
Amd
Search vendor "Amd"
Ryzen 3 3200ge Firmware
Search vendor "Amd" for product "Ryzen 3 3200ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 3 3200ge
Search vendor "Amd" for product "Ryzen 3 3200ge"
--
Safe
Amd
Search vendor "Amd"
Ryzen 3 Pro 3200ge Firmware
Search vendor "Amd" for product "Ryzen 3 Pro 3200ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Ryzen 3 Pro 3200ge
Search vendor "Amd" for product "Ryzen 3 Pro 3200ge"
--
Safe
Amd
Search vendor "Amd"
Athlon Pro 300ge Firmware
Search vendor "Amd" for product "Athlon Pro 300ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Pro 300ge
Search vendor "Amd" for product "Athlon Pro 300ge"
--
Safe
Amd
Search vendor "Amd"
Athlon Gold 3150ge Firmware
Search vendor "Amd" for product "Athlon Gold 3150ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Gold 3150ge
Search vendor "Amd" for product "Athlon Gold 3150ge"
--
Safe
Amd
Search vendor "Amd"
Athlon Gold Pro 3150ge Firmware
Search vendor "Amd" for product "Athlon Gold Pro 3150ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Gold Pro 3150ge
Search vendor "Amd" for product "Athlon Gold Pro 3150ge"
--
Safe
Amd
Search vendor "Amd"
Athlon Gold 3150g Firmware
Search vendor "Amd" for product "Athlon Gold 3150g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Gold 3150g
Search vendor "Amd" for product "Athlon Gold 3150g"
--
Safe
Amd
Search vendor "Amd"
Athlon Gold Pro 3150g Firmware
Search vendor "Amd" for product "Athlon Gold Pro 3150g Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Gold Pro 3150g
Search vendor "Amd" for product "Athlon Gold Pro 3150g"
--
Safe
Amd
Search vendor "Amd"
Athlon Silver 3050ge Firmware
Search vendor "Amd" for product "Athlon Silver 3050ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Silver 3050ge
Search vendor "Amd" for product "Athlon Silver 3050ge"
--
Safe
Amd
Search vendor "Amd"
Athlon Silver Pro 3125ge Firmware
Search vendor "Amd" for product "Athlon Silver Pro 3125ge Firmware"
--
Affected
in Amd
Search vendor "Amd"
Athlon Silver Pro 3125ge
Search vendor "Amd" for product "Athlon Silver Pro 3125ge"
--
Safe
Debian
Search vendor "Debian"
Debian Linux
Search vendor "Debian" for product "Debian Linux"
10.0
Search vendor "Debian" for product "Debian Linux" and version "10.0"
-
Affected
Debian
Search vendor "Debian"
Debian Linux
Search vendor "Debian" for product "Debian Linux"
11.0
Search vendor "Debian" for product "Debian Linux" and version "11.0"
-
Affected
Debian
Search vendor "Debian"
Debian Linux
Search vendor "Debian" for product "Debian Linux"
12.0
Search vendor "Debian" for product "Debian Linux" and version "12.0"
-
Affected
Xen
Search vendor "Xen"
Xen
Search vendor "Xen" for product "Xen"
--
Affected
Fedoraproject
Search vendor "Fedoraproject"
Fedora
Search vendor "Fedoraproject" for product "Fedora"
37
Search vendor "Fedoraproject" for product "Fedora" and version "37"
-
Affected
Fedoraproject
Search vendor "Fedoraproject"
Fedora
Search vendor "Fedoraproject" for product "Fedora"
38
Search vendor "Fedoraproject" for product "Fedora" and version "38"
-
Affected
Fedoraproject
Search vendor "Fedoraproject"
Fedora
Search vendor "Fedoraproject" for product "Fedora"
39
Search vendor "Fedoraproject" for product "Fedora" and version "39"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 10 1507
Search vendor "Microsoft" for product "Windows 10 1507"
< 10.0.10240.20345
Search vendor "Microsoft" for product "Windows 10 1507" and version " < 10.0.10240.20345"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 10 1607
Search vendor "Microsoft" for product "Windows 10 1607"
< 10.0.14393.6529
Search vendor "Microsoft" for product "Windows 10 1607" and version " < 10.0.14393.6529"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 10 1809
Search vendor "Microsoft" for product "Windows 10 1809"
< 10.0.17763.5206
Search vendor "Microsoft" for product "Windows 10 1809" and version " < 10.0.17763.5206"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 10 21h2
Search vendor "Microsoft" for product "Windows 10 21h2"
< 10.0.19044.3803
Search vendor "Microsoft" for product "Windows 10 21h2" and version " < 10.0.19044.3803"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 10 22h2
Search vendor "Microsoft" for product "Windows 10 22h2"
< 10.0.19045.3803
Search vendor "Microsoft" for product "Windows 10 22h2" and version " < 10.0.19045.3803"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 11 21h2
Search vendor "Microsoft" for product "Windows 11 21h2"
< 10.0.22000.2652
Search vendor "Microsoft" for product "Windows 11 21h2" and version " < 10.0.22000.2652"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 11 22h2
Search vendor "Microsoft" for product "Windows 11 22h2"
< 10.0.22621.2861
Search vendor "Microsoft" for product "Windows 11 22h2" and version " < 10.0.22621.2861"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows 11 23h2
Search vendor "Microsoft" for product "Windows 11 23h2"
< 10.0.22631.2861
Search vendor "Microsoft" for product "Windows 11 23h2" and version " < 10.0.22631.2861"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2008
Search vendor "Microsoft" for product "Windows Server 2008"
-sp2
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2008
Search vendor "Microsoft" for product "Windows Server 2008"
r2
Search vendor "Microsoft" for product "Windows Server 2008" and version "r2"
sp1, x64
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2012
Search vendor "Microsoft" for product "Windows Server 2012"
--
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2012
Search vendor "Microsoft" for product "Windows Server 2012"
r2
Search vendor "Microsoft" for product "Windows Server 2012" and version "r2"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2016
Search vendor "Microsoft" for product "Windows Server 2016"
< 10.0.14393.6529
Search vendor "Microsoft" for product "Windows Server 2016" and version " < 10.0.14393.6529"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2019
Search vendor "Microsoft" for product "Windows Server 2019"
< 10.0.17763.5206
Search vendor "Microsoft" for product "Windows Server 2019" and version " < 10.0.17763.5206"
-
Affected
Microsoft
Search vendor "Microsoft"
Windows Server 2022 23h2
Search vendor "Microsoft" for product "Windows Server 2022 23h2"
< 10.0.25398.584
Search vendor "Microsoft" for product "Windows Server 2022 23h2" and version " < 10.0.25398.584"
-
Affected