Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

CVE-2023-20589

Disclosure Date: August 08, 2023 •

CVE-2023-20589 CVSS v3 Base Score: 6.8

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

6.8 Medium

Impact Score:

5.9

Exploitability Score:

0.9

Vector:

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV):

Physical

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

High

Integrity (I):

High

Availability (A):

High

General Information

Offensive Application

Unknown

Utility Class

Unknown

Ports

Unknown

Vulnerable Versions

Ryzen™ 3000 Series Desktop Processors not down converted

Ryzen™ PRO 3000 Series Desktop Processors not down converted

Ryzen™ 3000 Series Desktop Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 3000 Series Processors with Radeon™ Vega Graphics not down converted

Athlon™ 3000 Series Processors with Radeon™ Graphics not down converted

Athlon™ PRO 3000 Series Processors with Radeon™ Vega Graphics not down converted

Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 4000 Series Desktop Processors not down converted

Ryzen™ 5000 Series Desktop Processors not down converted

Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics not down converted

Ryzen™ Threadripper™ 2000 Series Processors not down converted

Ryzen™ Threadripper™ 5000 Series Processors not down converted

Ryzen™ Threadripper™ 3000 Series Processors not down converted

Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics not down converted

Ryzen™ 5000 Series Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 5000 Series Processors not down converted

Ryzen™ 6000 Series Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 6000 Series Processors not down converted

Ryzen™ 7020 Series Processors with Radeon™ Graphics not down converted

Ryzen™ 7030 Series Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 7030 Series Processors not down converted

Ryzen™ 7035 Series Processors with Radeon™ Graphics not down converted

Ryzen™ PRO 5000 Series Desktop Processors not down converted

Prerequisites

Unknown

Discovered By

Unknown

PoC Author

Unknown

Metasploit Module

Unknown

Reporter

Unknown

Vendors

Products

4700s firmware -,
athlon gold 3150c firmware -,
athlon gold 3150g firmware -,
athlon gold 3150ge firmware -,
athlon gold 3150u firmware -,
athlon gold pro 3150g firmware -,
athlon gold pro 3150ge firmware -,
athlon pro 300ge firmware -,
athlon pro 3045b firmware -,
athlon pro 3145b firmware -,
athlon silver 3050c firmware -,
athlon silver 3050e firmware -,
athlon silver 3050u firmware -,
ryzen 3 3100 firmware -,
ryzen 3 3200g firmware -,
ryzen 3 3200ge firmware -,
ryzen 3 3300x firmware -,
ryzen 3 4100 firmware -,
ryzen 3 4300g firmware -,
ryzen 3 4300ge firmware -,
ryzen 3 5100 firmware -,
ryzen 3 5125c firmware -,
ryzen 3 5300g firmware -,
ryzen 3 5300ge firmware -,
ryzen 3 5300u firmware -,
ryzen 3 5400u firmware -,
ryzen 3 5425u firmware -,
ryzen 3 7320u firmware -,
ryzen 3 7335u firmware -,
ryzen 3 pro 3200g firmware -,
ryzen 3 pro 3200ge firmware -,
ryzen 3 pro 7330u firmware -,
ryzen 5 3400g firmware -,
ryzen 5 3500 firmware -,
ryzen 5 3500x firmware -,
ryzen 5 3600 firmware -,
ryzen 5 3600x firmware -,
ryzen 5 3600xt firmware -,
ryzen 5 4500 firmware -,
ryzen 5 4600g firmware -,
ryzen 5 4600ge firmware -,
ryzen 5 5500 firmware -,
ryzen 5 5500u firmware -,
ryzen 5 5560u firmware -,
ryzen 5 5600 firmware -,
ryzen 5 5600g firmware -,
ryzen 5 5600ge firmware -,
ryzen 5 5600h firmware -,
ryzen 5 5600hs firmware -,
ryzen 5 5600u firmware -,
ryzen 5 5600x firmware -,
ryzen 5 5600x3d firmware -,
ryzen 5 5625u firmware -,
ryzen 5 6600h firmware -,
ryzen 5 6600hs firmware -,
ryzen 5 6600u firmware -,
ryzen 5 7520u firmware -,
ryzen 5 7535hs firmware -,
ryzen 5 7535u firmware -,
ryzen 5 pro 3350g firmware -,
ryzen 5 pro 3350ge firmware -,
ryzen 5 pro 3400g firmware -,
ryzen 5 pro 3400ge firmware -,
ryzen 5 pro 5645 firmware -,
ryzen 5 pro 7530u firmware -,
ryzen 7 3700x firmware -,
ryzen 7 3800x firmware -,
ryzen 7 3800xt firmware -,
ryzen 7 4700g firmware -,
ryzen 7 4700ge firmware -,
ryzen 7 5700 firmware -,
ryzen 7 5700g firmware -,
ryzen 7 5700ge firmware -,
ryzen 7 5700u firmware -,
ryzen 7 5700x firmware -,
ryzen 7 5800 firmware -,
ryzen 7 5800h firmware -,
ryzen 7 5800hs firmware -,
ryzen 7 5800u firmware -,
ryzen 7 5800x firmware -,
ryzen 7 5800x3d firmware -,
ryzen 7 5825u firmware -,
ryzen 7 6800h firmware -,
ryzen 7 6800hs firmware -,
ryzen 7 6800u firmware -,
ryzen 7 7735hs firmware -,
ryzen 7 7735u firmware -,
ryzen 7 7736u firmware -,
ryzen 7 pro 5845 firmware -,
ryzen 7 pro 7730u firmware -,
ryzen 9 3900 firmware -,
ryzen 9 3900x firmware -,
ryzen 9 3900xt firmware -,
ryzen 9 3950x firmware -,
ryzen 9 5900 firmware -,
ryzen 9 5900hs firmware -,
ryzen 9 5900hx firmware -,
ryzen 9 5900x firmware -,
ryzen 9 5950x firmware -,
ryzen 9 5980hs firmware -,
ryzen 9 5980hx firmware -,
ryzen 9 6900hs firmware -,
ryzen 9 6900hx firmware -,
ryzen 9 6980hs firmware -,
ryzen 9 6980hx firmware -,
ryzen 9 pro 5945 firmware -,
ryzen threadripper 2920x firmware -,
ryzen threadripper 2950x firmware -,
ryzen threadripper 2970wx firmware -,
ryzen threadripper 2990wx firmware -,
ryzen threadripper 3960x firmware -,
ryzen threadripper 3970x firmware -,
ryzen threadripper 3990x firmware -,
ryzen threadripper pro 3945wx firmware -,
ryzen threadripper pro 3955wx firmware -,
ryzen threadripper pro 3975wx firmware -,
ryzen threadripper pro 3995wx firmware -,
ryzen threadripper pro 5945wx firmware -,
ryzen threadripper pro 5955wx firmware -,
ryzen threadripper pro 5965wx firmware -,
ryzen threadripper pro 5975wx firmware -,
ryzen threadripper pro 5995wx firmware -

References

Canonical

CVE-2023-20589 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20589)

Miscellaneous

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005

Rapid7

Unknown

CVE-2023-20589

Unknown

Unknown

None

None

Physical

CVE-2023-20589

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Unknown

CVE-2023-20589

Unknown

Unknown

None

None

Physical

CVE-2023-20589

Description

Add Assessment

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification