CVE-2023-20533

CVSS 6.1 · Medium EPSS 0.05% · P15 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-20533

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AMD EPYC 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AMD EPYC是美国超威半导体（AMD）公司的一款x86架构服务器微处理器产品线，中文名为“霄龙”，采用Zen微架构。 AMD EPYC 存在安全漏洞，该漏洞源于系统管理单元 (SMU) 中的 DRAM 地址验证不充分可能会允许攻击者读取/写入无效的 DRAM 地址，从而可能导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
AMD	Ryzen™ 3000 series Desktop Processors “Matisse"	various	-
AMD	AMD Ryzen™ 5000 Series Desktop Processors “Vermeer”	various	-
AMD	AMD Ryzen™ Threadripper™ 3000 Series Processors “Castle Peak” HEDT	various	-
AMD	AMD Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3	various	-
AMD	AMD Ryzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WS	various	-
AMD	2nd Gen AMD EPYC™ Processors	various	-
AMD	3rd Gen AMD EPYC™ Processors	various	-
AMD	AMD EPYC™ Embedded 7002	various	-
AMD	AMD EPYC™ Embedded 7003	various	-
AMD	AMD Ryzen™ Embedded 5000	various	-
AMD	AMD EPYC™ Embedded 7002	various	-
AMD	AMD EPYC™ Embedded 7003	various	-

II. Public POCs for CVE-2023-20533

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-20533

请登录查看更多情报信息。

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002vendor-advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2023-20533

Same Patch Batch · AMD · 2023-11-14 · 20 CVEs total

CVE-2022-23820	7.5 HIGH	AMD EPYC 安全漏洞
CVE-2021-46774	6.7 MEDIUM	AMD EPYC 安全漏洞
CVE-2023-20566	5.3 MEDIUM	AMD EPYC 安全漏洞
CVE-2023-20521	3.3 LOW	AMD EPYC 安全漏洞
CVE-2021-46766	2.5 LOW	AMD EPYC 安全漏洞
CVE-2022-23830	1.9 LOW	AMD EPYC 安全漏洞
CVE-2021-26345	1.9 LOW	AMD EPYC 缓冲区错误漏洞
CVE-2023-20526	1.9 LOW	AMD EPYC 安全漏洞
CVE-2021-46748		AMD Secure Processor 安全漏洞
CVE-2023-20596		AMD Ryzen 安全漏洞
CVE-2023-20567		AMD Graphics Driver 安全漏洞
CVE-2023-20568		AMD Graphics Driver 安全漏洞
CVE-2023-20519		AMD EPYC 资源管理错误漏洞
CVE-2023-20592		AMD CPU 安全漏洞
CVE-2021-46758		AMD Secure Processor 安全漏洞
CVE-2022-23821		AMD System Management Mode 安全漏洞
CVE-2023-20563		AMD CPU 安全漏洞
CVE-2023-20565		AMD CPU 安全漏洞
CVE-2023-20571		AMD CPU 安全漏洞

IV. Related Vulnerabilities

Same product: Ryzen™ 3000 series Desktop Processors “Matisse"

Same vendor: AMD

V. Comments for CVE-2023-20533

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-20533

I. Basic Information for CVE-2023-20533

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-20533

III. Intelligence Information for CVE-2023-20533

Same Patch Batch · AMD · 2023-11-14 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-20533

Leave a comment