CVE-2022-23821

EPSS 0.43% · P62 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-23821

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AMD System Management Mode 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AMD System Management Mode是美国超威半导体（AMD）公司的系统管理模式。一种CPU的执行模式。 AMD System Management Mode存在安全漏洞，该漏洞源于系统管理模式（SMM）中的不当访问控制可能允许攻击者写入 SPI ROM，从而可能导致任意代码执行。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
AMD	Ryzen™ 3000 Series Desktop Processors “Matisse”	various	-
AMD	Ryzen™ 5000 Series Desktop Processors “Vermeer”	various	-
AMD	Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne”	various	-
AMD	Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics “Picasso” AM4	various	-
AMD	Ryzen™ Threadripper™ 2000 Series Processors “Colfax”	various	-
AMD	Ryzen™ Threadripper™ 3000 Series Processors “Castle Peak” HEDT	various	-
AMD	Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3	various	-
AMD	Ryzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WS	various	-
AMD	Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” FP5	various	-
AMD	Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”	various	-
AMD	Ryzen™ 3000 Series Mobile Processor with Radeon™ Graphics “Picasso” FP5	various	-
AMD	Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6	various	-
AMD	Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”	various	-
AMD	Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics “Picasso” AM4	various	-
AMD	Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne”	various	-
AMD	AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics "Rembrandt"	various	-
AMD	AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics “Rembrandt-R”	various	-
AMD	AMD Ryzen™ 5000 Series Processors with Radeon™ Graphics “Barcelo”	various	-
AMD	AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R”	various	-
AMD	AMD Ryzen™ Embedded R1000	various	-
AMD	AMD Ryzen™ Embedded R2000	various	-
AMD	AMD Ryzen™ Embedded 5000	various	-
AMD	AMD Ryzen™ Embedded V1000	various	-
AMD	AMD Ryzen™ Embedded V2000	various	-
AMD	AMD Ryzen™ Embedded V3000	various	-

II. Public POCs for CVE-2022-23821

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-23821

请登录查看更多情报信息。

Same Patch Batch · AMD · 2023-11-14 · 20 CVEs total

CVE-2022-23820	7.5 HIGH	AMD EPYC 安全漏洞
CVE-2021-46774	6.7 MEDIUM	AMD EPYC 安全漏洞
CVE-2023-20533	6.1 MEDIUM	AMD EPYC 安全漏洞
CVE-2023-20566	5.3 MEDIUM	AMD EPYC 安全漏洞
CVE-2023-20521	3.3 LOW	AMD EPYC 安全漏洞
CVE-2021-46766	2.5 LOW	AMD EPYC 安全漏洞
CVE-2021-26345	1.9 LOW	AMD EPYC 缓冲区错误漏洞
CVE-2022-23830	1.9 LOW	AMD EPYC 安全漏洞
CVE-2023-20526	1.9 LOW	AMD EPYC 安全漏洞
CVE-2023-20596		AMD Ryzen 安全漏洞
CVE-2023-20592		AMD CPU 安全漏洞
CVE-2023-20571		AMD CPU 安全漏洞
CVE-2023-20568		AMD Graphics Driver 安全漏洞
CVE-2023-20567		AMD Graphics Driver 安全漏洞
CVE-2023-20565		AMD CPU 安全漏洞
CVE-2023-20563		AMD CPU 安全漏洞
CVE-2023-20519		AMD EPYC 资源管理错误漏洞
CVE-2021-46758		AMD Secure Processor 安全漏洞
CVE-2021-46748		AMD Secure Processor 安全漏洞

IV. Related Vulnerabilities

Same product: Ryzen™ 3000 Series Desktop Processors “Matisse”

Same vendor: AMD

V. Comments for CVE-2022-23821

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-23821

I. Basic Information for CVE-2022-23821

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-23821

III. Intelligence Information for CVE-2022-23821

Same Patch Batch · AMD · 2023-11-14 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-23821

Leave a comment