CVE-2020-12890

Summary

Improper handling of pointers in the System Management Mode (SMM) handling code may allow for a privileged attacker with physical or administrative access to potentially manipulate the AMD Generic Encapsulated Software Architecture (AGESA) to execute arbitrary code undetected by the operating system.

Affected Software

VendorProductVersion RangeStatus
AMDAMD ProcessorsProcessor EPYCunaffected

Weaknesses

  • NA

ADP Enrichment

CVE Program Container

Additional References

References