- EPSS 0.01%
- Veröffentlicht 13.02.2024 20:15:52
- Zuletzt bearbeitet 14.03.2025 18:15:25
Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) privileged access to bypass protections potentially resulting in loss of integrity and availability.
CVE-2023-4969
- EPSS 0.91%
- Veröffentlicht 16.01.2024 17:15:08
- Zuletzt bearbeitet 20.06.2025 18:15:22
A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures.
CVE-2023-20596
- EPSS 0.53%
- Veröffentlicht 14.11.2023 19:15:16
- Zuletzt bearbeitet 21.11.2024 07:41:11
Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.
CVE-2023-20563
- EPSS 0.13%
- Veröffentlicht 14.11.2023 19:15:15
- Zuletzt bearbeitet 21.11.2024 07:41:07
Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVE-2023-20565
- EPSS 0.13%
- Veröffentlicht 14.11.2023 19:15:15
- Zuletzt bearbeitet 21.11.2024 07:41:07
Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVE-2023-20571
- EPSS 0.39%
- Veröffentlicht 14.11.2023 19:15:15
- Zuletzt bearbeitet 21.11.2024 07:41:09
A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.