CVE-2023-20593

Summary

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

Affected Software

VendorProductVersion RangeStatus
AMDRyzen™ 3000 Series Desktop Processors “Matisse” AM4variousaffected
AMDAMD Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” AM4variousaffected
AMD3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDTvariousaffected
AMDRyzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3variousaffected
AMDRyzen™ 5000 Series Mobile processors with Radeon™ Graphics “Lucienne”variousaffected
AMDRyzen™ 4000 Series Mobile processors with Radeon™ Graphics “Renoir”variousaffected
AMDRyzen™ 7020 Series processors “Mendocino” FT6variousaffected
AMD2nd Gen AMD EPYC™ Processorsvariousaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References