{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-20587", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "state": "PUBLISHED", "assignerShortName": "AMD", "dateReserved": "2022-10-27T18:53:39.759Z", "datePublished": "2024-02-13T19:31:22.706Z", "dateUpdated": "2025-05-07T21:10:03.008Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "packageName": "PI", "platforms": ["x86"], "product": "3rd Gen AMD EPYC\u2122 Processors", "vendor": "AMD", "versions": [{"status": "affected", "version": "various "}]}, {"defaultStatus": "unaffected", "packageName": "PI", "platforms": ["x86"], "product": "4th Gen AMD EPYC\u2122 Processors", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "affected", "packageName": "PI", "product": "1st Gen AMD EPYC\u2122 Processors", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "unaffected", "packageName": "PI", "platforms": ["x86"], "product": "2nd Gen AMD EPYC\u2122 Processors", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "unaffected", "platforms": ["x86"], "product": "AMD EPYC(TM) Embedded 3000 ", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "unaffected", "platforms": ["x86"], "product": "AMD EPYC(TM) Embedded 7002 ", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "unaffected", "product": "AMD EPYC(TM) Embedded 7003", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"defaultStatus": "unaffected", "platforms": ["x86"], "product": "AMD EPYC(TM) Embedded 9003", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}], "datePublic": "2024-02-13T17:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<br>"}], "value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n"}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2024-02-13T19:32:33.392Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"}], "source": {"advisory": "AMD-SB-7009", "discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T09:05:36.265Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"}]}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-02-14T19:17:11.969537Z", "id": "CVE-2023-20587", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-07T21:10:03.008Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009", "tags": ["vendor-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T09:05:36.265Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-20587", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-02-14T19:17:11.969537Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-05-07T21:09:58.752Z"}}], "cna": {"source": {"advisory": "AMD-SB-7009", "discovery": "UNKNOWN"}, "affected": [{"vendor": "AMD", "product": "3rd Gen AMD EPYC\u2122 Processors", "versions": [{"status": "affected", "version": "various "}], "platforms": ["x86"], "packageName": "PI", "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "4th Gen AMD EPYC\u2122 Processors", "versions": [{"status": "affected", "version": "various"}], "platforms": ["x86"], "packageName": "PI", "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "1st Gen AMD EPYC\u2122 Processors", "versions": [{"status": "affected", "version": "various"}], "packageName": "PI", "defaultStatus": "affected"}, {"vendor": "AMD", "product": "2nd Gen AMD EPYC\u2122 Processors", "versions": [{"status": "affected", "version": "various"}], "platforms": ["x86"], "packageName": "PI", "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "AMD EPYC(TM) Embedded 3000 ", "versions": [{"status": "affected", "version": "various"}], "platforms": ["x86"], "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "AMD EPYC(TM) Embedded 7002 ", "versions": [{"status": "affected", "version": "various"}], "platforms": ["x86"], "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "AMD EPYC(TM) Embedded 7003", "versions": [{"status": "affected", "version": "various"}], "defaultStatus": "unaffected"}, {"vendor": "AMD", "product": "AMD EPYC(TM) Embedded 9003", "versions": [{"status": "affected", "version": "various"}], "platforms": ["x86"], "defaultStatus": "unaffected"}], "datePublic": "2024-02-13T17:00:00.000Z", "references": [{"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n", "supportingMedia": [{"type": "text/html", "value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<br>", "base64": false}]}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2024-02-13T19:32:33.392Z"}}}, "cveMetadata": {"cveId": "CVE-2023-20587", "state": "PUBLISHED", "dateUpdated": "2025-05-07T21:10:03.008Z", "dateReserved": "2022-10-27T18:53:39.759Z", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "datePublished": "2024-02-13T19:31:22.706Z", "assignerShortName": "AMD"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n"}, {"lang": "es", "value": "Un control de acceso inadecuado en el modo de administraci\u00f3n del sistema (SMM) puede permitir que un atacante acceda a la memoria flash SPI, lo que podr\u00eda provocar la ejecuci\u00f3n de c\u00f3digo arbitrario."}], "id": "CVE-2023-20587", "lastModified": "2025-05-07T22:15:16.463", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-02-13T20:15:52.677", "references": [{"source": "[email protected]", "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{"bugzilla": {"description": "hw: amd: failure to sanitize input in SMM", "id": "2263402", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263402"}, "csaw": false, "cvss3": {"cvss3_base_score": "8.4", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-284", "details": ["Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.", "A vulnerability was found in AMD hardware due to improper access control in System Management Mode (SMM). This issue could allow a local unauthenticated attacker to execute arbitrary code."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2023-20587", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-02-13T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-20587\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-20587\nhttps://www.amd.com/en/resources/product-security/bulletin/amd-sb-7009.html"], "statement": "The PSP and AEGIS vulnerabilities necessitate a BIOS update, as they are not inherent to the CPU and cannot be addressed through CPU microcode updates. This requires a UEFI firmware update from the device vendor, distinct from updates in the linux-firmware package. Therefore, linux-firmware on Red Hat Enterprise Linux is marked as not affected.", "threat_severity": "Important"}