CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

amd

ryzen_5_5600x3d_firmware

5 known vulnerabilities · sorted by CVSS score

CVE-2023-20555

HIGH7.8

Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.

amd / ryzen_3_3300_firmware+131

Local

Published Aug 8, 2023

CVE-2023-20589

MEDIUM6.8

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution.

amd / ryzen_5_pro_3400g_firmware+121

Physical

Published Aug 8, 2023

CVE-2023-20597

MEDIUM5.5

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

amd / ryzen_3_3100_firmware+181

Local

Published Sep 20, 2023

CVE-2023-20569

MEDIUM4.7

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

fedoraproject / fedora+159

Local

Published Aug 8, 2023

CVE-2023-20594

MEDIUM4.4

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

amd / epyc_7003_firmware+212

Local

Published Sep 20, 2023