CVE-2022-23815

Summary

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphicsvariousaffected
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.Funaffected
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPollockPI-FT5 1.0.0.5unaffected
AMDAMD Ryzen™ 3000 Series Mobile Processor with Radeon™ GraphicsPicassoPI-FP5 1.0.0.Eunaffected
AMDAMD RyzenTM Embedded R1000EmbeddedPI-FP5 1.2.0.Aunaffected
AMDAMD RyzenTM Embedded R2000EmbeddedR2KPI-FP5 1.0.0.2unaffected
AMDAMD RyzenTM Embedded V1000EmbeddedPI-FP5 1.2.0.Aunaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References