- EPSS 0.01%
- Veröffentlicht 13.02.2024 20:15:52
- Zuletzt bearbeitet 14.03.2025 18:15:25
Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) privileged access to bypass protections potentially resulting in loss of integrity and availability.
CVE-2023-4969
- EPSS 0.91%
- Veröffentlicht 16.01.2024 17:15:08
- Zuletzt bearbeitet 20.06.2025 18:15:22
A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures.
CVE-2023-20555
- EPSS 0.05%
- Veröffentlicht 08.08.2023 18:15:11
- Zuletzt bearbeitet 21.11.2024 07:41:06
Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.
CVE-2023-20589
- EPSS 0.08%
- Veröffentlicht 08.08.2023 18:15:11
- Zuletzt bearbeitet 21.11.2024 07:41:10
An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution. ...
CVE-2023-20593
- EPSS 6.48%
- Veröffentlicht 24.07.2023 20:15:10
- Zuletzt bearbeitet 13.02.2025 17:16:01
An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.