CVE-2023-20587 (GCVE-0-2023-20587)
Vulnerability from cvelistv5 – Published: 2024-02-13 19:31 – Updated: 2025-05-07 21:10
VLAI
EPSS
VEX
Summary
Improper
Access Control in System Management Mode (SMM) may allow an attacker access to
the SPI flash potentially leading to arbitrary code execution.
Severity
7.1 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-284 - Improper Access Control
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://www.amd.com/en/corporate/product-security… | vendor-advisory |
Impacted products
8 products
| Vendor | Product | Version | |
|---|---|---|---|
| AMD | 3rd Gen AMD EPYC™ Processors |
Affected:
various
|
|
| AMD | 4th Gen AMD EPYC™ Processors |
Affected:
various
|
|
| AMD | 1st Gen AMD EPYC™ Processors |
Affected:
various
|
|
| AMD | 2nd Gen AMD EPYC™ Processors |
Affected:
various
|
|
| AMD | AMD EPYC(TM) Embedded 3000 |
Affected:
various
|
|
| AMD | AMD EPYC(TM) Embedded 7002 |
Affected:
various
|
|
| AMD | AMD EPYC(TM) Embedded 7003 |
Affected:
various
|
|
| AMD | AMD EPYC(TM) Embedded 9003 |
Affected:
various
|
Date Public
2024-02-13 17:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T09:05:36.265Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-20587",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-14T19:17:11.969537Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-284",
"description": "CWE-284 Improper Access Control",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-07T21:10:03.008Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"packageName": "PI",
"platforms": [
"x86"
],
"product": "3rd Gen AMD EPYC\u2122 Processors",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various "
}
]
},
{
"defaultStatus": "unaffected",
"packageName": "PI",
"platforms": [
"x86"
],
"product": "4th Gen AMD EPYC\u2122 Processors",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "affected",
"packageName": "PI",
"product": "1st Gen AMD EPYC\u2122 Processors",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "unaffected",
"packageName": "PI",
"platforms": [
"x86"
],
"product": "2nd Gen AMD EPYC\u2122 Processors",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"x86"
],
"product": "AMD EPYC(TM) Embedded 3000 ",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"x86"
],
"product": "AMD EPYC(TM) Embedded 7002 ",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "unaffected",
"product": "AMD EPYC(TM) Embedded 7003",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"x86"
],
"product": "AMD EPYC(TM) Embedded 9003",
"vendor": "AMD",
"versions": [
{
"status": "affected",
"version": "various"
}
]
}
],
"datePublic": "2024-02-13T17:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\u003cbr\u003e"
}
],
"value": "Improper\nAccess Control in System Management Mode (SMM) may allow an attacker access to\nthe SPI flash potentially leading to arbitrary code execution.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n"
}
],
"providerMetadata": {
"dateUpdated": "2024-02-13T19:32:33.392Z",
"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
"shortName": "AMD"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009"
}
],
"source": {
"advisory": "AMD-SB-7009",
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "Vulnogram 0.1.0-dev"
}
}
},
"cveMetadata": {
"assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
"assignerShortName": "AMD",
"cveId": "CVE-2023-20587",
"datePublished": "2024-02-13T19:31:22.706Z",
"dateReserved": "2022-10-27T18:53:39.759Z",
"dateUpdated": "2025-05-07T21:10:03.008Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-20587",
"date": "2026-07-12",
"epss": "0.00173",
"percentile": "0.06908"
},
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"Improper\\nAccess Control in System Management Mode (SMM) may allow an attacker access to\\nthe SPI flash potentially leading to arbitrary code execution.\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\"}, {\"lang\": \"es\", \"value\": \"Un control de acceso inadecuado en el modo de administraci\\u00f3n del sistema (SMM) puede permitir que un atacante acceda a la memoria flash SPI, lo que podr\\u00eda provocar la ejecuci\\u00f3n de c\\u00f3digo arbitrario.\"}]",
"id": "CVE-2023-20587",
"lastModified": "2024-11-21T07:41:10.347",
"published": "2024-02-13T20:15:52.677",
"references": "[{\"url\": \"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\", \"source\": \"psirt@amd.com\"}, {\"url\": \"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "psirt@amd.com",
"vulnStatus": "Awaiting Analysis"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-20587\",\"sourceIdentifier\":\"psirt@amd.com\",\"published\":\"2024-02-13T20:15:52.677\",\"lastModified\":\"2026-06-17T05:30:22.307\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper\\nAccess Control in System Management Mode (SMM) may allow an attacker access to\\nthe SPI flash potentially leading to arbitrary code execution.\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\"},{\"lang\":\"es\",\"value\":\"Un control de acceso inadecuado en el modo de administraci\u00f3n del sistema (SMM) puede permitir que un atacante acceda a la memoria flash SPI, lo que podr\u00eda provocar la ejecuci\u00f3n de c\u00f3digo arbitrario.\"}],\"affected\":[{\"source\":\"psirt@amd.com\",\"affectedData\":[{\"vendor\":\"AMD\",\"product\":\"3rd Gen AMD EPYC\u2122 Processors\",\"defaultStatus\":\"unaffected\",\"packageName\":\"PI\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various \",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"4th Gen AMD EPYC\u2122 Processors\",\"defaultStatus\":\"unaffected\",\"packageName\":\"PI\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"1st Gen AMD EPYC\u2122 Processors\",\"defaultStatus\":\"affected\",\"packageName\":\"PI\",\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"2nd Gen AMD EPYC\u2122 Processors\",\"defaultStatus\":\"unaffected\",\"packageName\":\"PI\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"AMD EPYC(TM) Embedded 3000 \",\"defaultStatus\":\"unaffected\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"AMD EPYC(TM) Embedded 7002 \",\"defaultStatus\":\"unaffected\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"AMD EPYC(TM) Embedded 7003\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]},{\"vendor\":\"AMD\",\"product\":\"AMD EPYC(TM) Embedded 9003\",\"defaultStatus\":\"unaffected\",\"platforms\":[\"x86\"],\"versions\":[{\"version\":\"various\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":7.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":5.2}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2024-02-14T19:17:11.969537Z\",\"id\":\"CVE-2023-20587\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-284\"}]}],\"references\":[{\"url\":\"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\",\"source\":\"psirt@amd.com\"},{\"url\":\"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2025-11-21T14:38:24+00:00",
"cve": "CVE-2023-20587",
"id": "CVE-2023-20587",
"initial_release_date": "2023-01-01T00:00:00+00:00",
"product_status:known_not_affected": "59",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "hw: amd: failure to sanitize input in SMM",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2023/cve-2023-20587.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T09:05:36.265Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.1, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-20587\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-14T19:17:11.969537Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-284\", \"description\": \"CWE-284 Improper Access Control\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-07T21:09:58.752Z\"}}], \"cna\": {\"source\": {\"advisory\": \"AMD-SB-7009\", \"discovery\": \"UNKNOWN\"}, \"affected\": [{\"vendor\": \"AMD\", \"product\": \"3rd Gen AMD EPYC\\u2122 Processors\", \"versions\": [{\"status\": \"affected\", \"version\": \"various \"}], \"platforms\": [\"x86\"], \"packageName\": \"PI\", \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"4th Gen AMD EPYC\\u2122 Processors\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"platforms\": [\"x86\"], \"packageName\": \"PI\", \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"1st Gen AMD EPYC\\u2122 Processors\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"packageName\": \"PI\", \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"2nd Gen AMD EPYC\\u2122 Processors\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"platforms\": [\"x86\"], \"packageName\": \"PI\", \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC(TM) Embedded 3000 \", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"platforms\": [\"x86\"], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC(TM) Embedded 7002 \", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"platforms\": [\"x86\"], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC(TM) Embedded 7003\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC(TM) Embedded 9003\", \"versions\": [{\"status\": \"affected\", \"version\": \"various\"}], \"platforms\": [\"x86\"], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2024-02-13T17:00:00.000Z\", \"references\": [{\"url\": \"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009\", \"tags\": [\"vendor-advisory\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper\\nAccess Control in System Management Mode (SMM) may allow an attacker access to\\nthe SPI flash potentially leading to arbitrary code execution.\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Improper\\nAccess Control in System Management Mode (SMM) may allow an attacker access to\\nthe SPI flash potentially leading to arbitrary code execution.\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\\n\u003cbr\u003e\", \"base64\": false}]}], \"providerMetadata\": {\"orgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"shortName\": \"AMD\", \"dateUpdated\": \"2024-02-13T19:32:33.392Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-20587\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-07T21:10:03.008Z\", \"dateReserved\": \"2022-10-27T18:53:39.759Z\", \"assignerOrgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"datePublished\": \"2024-02-13T19:31:22.706Z\", \"assignerShortName\": \"AMD\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…