CVE-2023-20516

Summary

Improper handling of insufficiency privileges in the ASP could allow a privileged attacker to modify Translation Map Registers (TMRs) potentially resulting in loss of confidentiality or integrity.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Instinct™ MI250ROCm 6.3unaffected
AMDAMD Instinct™ MI210ROCm 6.3unaffected
AMDAMD Radeon™ Instinct™ MI25 Graphics ProductsContact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V520 Graphics ProductsContact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V620 Graphics ProductsContact your AMD Customer Engineering representativeunaffected

Weaknesses

  • CWE-274: CWE-274 Improper Handling of Insufficient Privileges

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References