CVE-2023-20566 MEDIUM

CVE-2023-20566

Vendor Amd
Product 3rd Gen AMD EPYC™ Processors
Published November 14, 2023
Last update December 3, 2024

CVSS base score

5.3/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N

What the vulnerability does

01Description

Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

Key dates

02Disclosure timeline

November 14, 2023 CVE published
December 3, 2024 Record updated