Vulnerability-Lookup - Search a vulnerability

Vulnerabilites related to AMD - Ryzen™ 7000 Series Processors with Radeon™ Graphics

cve-2023-20569

Vulnerability from cvelistv5

Published

2023-08-08 17:02

Modified

2024-09-23 03:18

Severity ?

Summary

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

References

▼	URL	Tags
	https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7005	vendor-advisory
	http://xenbits.xen.org/xsa/advisory-434.html
	http://www.openwall.com/lists/oss-security/2023/08/08/4
	https://comsec.ethz.ch/research/microarch/inception/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L4E4TZNMLYL2KETY23IPA43QXFAVJ46V/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKK3IA63LSKM4EC3TN4UM6DDEIOWEQIG/
	https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html
	https://www.debian.org/security/2023/dsa-5475
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/
	https://security.netapp.com/advisory/ntap-20240605-0006/

Impacted products

Vendor

Product

Version

▼

AMD

Ryzen™ 3000 Series Desktop Processors

Version: various

AMD	Ryzen™ PRO 3000 Series Desktop Processors	Version: various
AMD	Ryzen™ 3000 Series Desktop Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ PRO 3000 Series Processors with Radeon™ Vega Graphics	Version: various
AMD	Athlon™ 3000 Series Processors with Radeon™ Graphics	Version: various
AMD	Athlon™ PRO 3000 Series Processors with Radeon™ Vega Graphics	Version: various
AMD	Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ PRO 4000 Series Desktop Processors	Version: various
AMD	Ryzen™ 5000 Series Desktop Processors	Version: various
AMD	Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics	Version: various
	Ryzen™ PRO 5000 Series Desktop Processors	Version: various
AMD	Ryzen™ Threadripper™ 2000 Series Processors	Version: various
AMD	Ryzen™ Threadripper™ 5000 Series Processors	Version: various
AMD	Ryzen™ Threadripper™ 3000 Series Processors	Version: various
AMD	Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 5000 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ PRO 5000 Series Processors	Version: various
AMD	Ryzen™ 6000 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ PRO 6000 Series Processors	Version: various
AMD	Ryzen™ 7040 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 7000 Series Processors	Version: various
AMD	Ryzen™ 7000 Series Processors with Radeon™ Graphics	Version: various
AMD	1st Gen AMD EPYC™ Processors	Version: various
AMD	2nd Gen AMD EPYC™ Processors	Version: various
AMD	3rd Gen AMD EPYC™ Processors	Version: various
AMD	4th Gen AMD EPYC™ Processors	Version: various

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-09-23T03:18:32.598Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  url: "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7005.html",
               },
               {
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7005",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "http://xenbits.xen.org/xsa/advisory-434.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "http://www.openwall.com/lists/oss-security/2023/08/08/4",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://comsec.ethz.ch/research/microarch/inception/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L4E4TZNMLYL2KETY23IPA43QXFAVJ46V/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKK3IA63LSKM4EC3TN4UM6DDEIOWEQIG/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://www.debian.org/security/2023/dsa-5475",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/",
               },
               {
                  tags: [
                     "x_transferred",
                  ],
                  url: "https://security.netapp.com/advisory/ntap-20240605-0006/",
               },
            ],
            title: "CVE Program Container",
            x_generator: {
               engine: "ADPogram 0.0.1",
            },
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 3000 Series Desktop Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 3000 Series Desktop Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 3000 Series Desktop Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 3000 Series Processors with Radeon™ Vega Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Athlon™ 3000 Series Processors with Radeon™ Graphics ",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Athlon™ PRO 3000 Series Processors with Radeon™ Vega Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 4000 Series Desktop Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 5000 Series Desktop Processors ",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: "AGESA",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 5000 Series Desktop Processors",
               vendor: " ",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ Threadripper™ 2000 Series Processors ",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: " Ryzen™ Threadripper™ 5000 Series Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ Threadripper™ 3000 Series Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 5000 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 5000 Series Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 6000 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ PRO 6000 Series Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               packageName: " ",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 7040 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 7000 Series Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: "Ryzen™ 7000 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: " 1st Gen AMD EPYC™ Processors",
               vendor: "AMD ",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: "2nd Gen AMD EPYC™ Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: "3rd Gen AMD EPYC™  Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "x86",
               ],
               product: "4th Gen AMD EPYC™  Processors",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
         ],
         datePublic: "2023-08-08T16:30:00.000Z",
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "\n\n\n\n<span style=\"background-color: rgb(255, 255, 255);\">A side channel vulnerability on some </span><span style=\"background-color: rgb(255, 255, 255);\">of the </span><span style=\"background-color: rgb(255, 255, 255);\">AMD CPUs may allow an attacker to influence </span><span style=\"background-color: rgb(255, 255, 255);\">the </span><span style=\"background-color: rgb(255, 255, 255);\">return address prediction</span><span style=\"background-color: rgb(255, 255, 255);\">. This may</span><span style=\"background-color: rgb(255, 255, 255);\"> result in speculative execution at an attacker-controlled </span><span style=\"background-color: rgb(255, 255, 255);\">address</span><span style=\"background-color: rgb(255, 255, 255);\">, potentially leading to information disclosure.</span>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n",
                  },
               ],
               value: "\n\n\nA side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n",
            },
         ],
         providerMetadata: {
            dateUpdated: "2023-08-08T17:02:11.318Z",
            orgId: "b58fc414-a1e4-4f92-9d70-1add41838648",
            shortName: "AMD",
         },
         references: [
            {
               tags: [
                  "vendor-advisory",
               ],
               url: "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7005",
            },
            {
               url: "http://xenbits.xen.org/xsa/advisory-434.html",
            },
            {
               url: "http://www.openwall.com/lists/oss-security/2023/08/08/4",
            },
            {
               url: "https://comsec.ethz.ch/research/microarch/inception/",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L4E4TZNMLYL2KETY23IPA43QXFAVJ46V/",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKK3IA63LSKM4EC3TN4UM6DDEIOWEQIG/",
            },
            {
               url: "https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html",
            },
            {
               url: "https://www.debian.org/security/2023/dsa-5475",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/",
            },
            {
               url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/",
            },
            {
               url: "https://security.netapp.com/advisory/ntap-20240605-0006/",
            },
         ],
         source: {
            advisory: "AMD-SB-7005",
            discovery: "UNKNOWN",
         },
         x_generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "b58fc414-a1e4-4f92-9d70-1add41838648",
      assignerShortName: "AMD",
      cveId: "CVE-2023-20569",
      datePublished: "2023-08-08T17:02:11.318Z",
      dateReserved: "2022-10-27T18:53:39.754Z",
      dateUpdated: "2024-09-23T03:18:32.598Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2023-20598

Vulnerability from cvelistv5

Published

2023-10-17 13:26

Modified

2024-08-02 09:05

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution.

References

▼	URL	Tags
	https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6009	vendor-advisory

Impacted products

Vendor

Product

Version

▼

AMD

Radeon™ RX 5000 Series Graphics Cards

Version: various

AMD	Radeon™ RX 6000 Series Graphics Cards	Version: various
AMD	Radeon™ RX 7000 Series Graphics Cards	Version: various
AMD	Radeon™ PRO W5000 Series Graphics Cards	Version: Various
AMD	Radeon™ PRO W6000 Series Graphics Cards	Version: various
AMD	Radeon™ PRO W7000 Series Graphics Cards	Version: various
AMD	Ryzen™ 7045 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 7020 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 7040 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 7000 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 6000 Series Processors with Radeon™ Graphics	Version: various
AMD	Ryzen™ 7035 Series Processors with Radeon™ Graphics	Version: various

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            affected: [
               {
                  cpes: [
                     "cpe:2.3:h:amd:radeon_pro_w5500:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w5500x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w5700:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w5700x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6300:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6300m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6400:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6500m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6600m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6600x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6800:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6800x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w6900x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w7500:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w7600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w7800:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_pro_w7900:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7600m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7600m_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7600s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7600xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7700s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7700xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7700_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7800xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7800_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900_gre:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900xtx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_7900_xtx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:o:amd:radeon_rx_7900xtx_firmware:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6900_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6300m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6400:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6450m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6500m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6500_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6550m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6550s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6600m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6600s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6600_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6650m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6650m_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6650_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6700:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6700m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6700s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6700_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6750_gre_10gb:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6750_gre_12gb:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6750_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6800:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6800m:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_6800s:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5700:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5700_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5600_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5500:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5500_xt:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5300:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:radeon_rx_5300_xt:-:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "radeon_rx_5300_xt",
                  vendor: "amd",
                  versions: [
                     {
                        lessThanOrEqual: "*",
                        status: "affected",
                        version: "0",
                        versionType: "custom",
                     },
                  ],
               },
               {
                  cpes: [
                     "cpe:2.3:h:amd:ryzen_7_7700:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7700x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7735hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7735u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7736u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7745hx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7800x3d:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7840h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_7840u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_pro_7745:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_pro_7840h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_pro_7840hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_6800hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_7_6800h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_3_7320u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_3_7335u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_3_7440u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_6600h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_6600hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_6600u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7500f:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7520u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7535hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7535u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7545u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7600:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7600x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7640h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7640u:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_5_7645hx:-:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "ryzen_5_7645hx",
                  vendor: "amd",
                  versions: [
                     {
                        lessThan: "*",
                        status: "affected",
                        version: "0",
                        versionType: "custom",
                     },
                  ],
               },
               {
                  cpes: [
                     "cpe:2.3:h:amd:ryzen_9_6980hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_6980hx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7845hx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7900:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7900x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7900x3d:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7945hx:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7945hx3d:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7950x:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_7950x3d:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_pro_7940h:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_pro_7940hs:-:*:*:*:*:*:*:*",
                     "cpe:2.3:h:amd:ryzen_9_pro_7945:-:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "ryzen_9_pro_7945",
                  vendor: "amd",
                  versions: [
                     {
                        lessThan: "*",
                        status: "affected",
                        version: "0",
                        versionType: "custom",
                     },
                  ],
               },
            ],
            metrics: [
               {
                  cvssV3_1: {
                     attackComplexity: "LOW",
                     attackVector: "LOCAL",
                     availabilityImpact: "HIGH",
                     baseScore: 7.8,
                     baseSeverity: "HIGH",
                     confidentialityImpact: "HIGH",
                     integrityImpact: "HIGH",
                     privilegesRequired: "LOW",
                     scope: "UNCHANGED",
                     userInteraction: "NONE",
                     vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                     version: "3.1",
                  },
               },
               {
                  other: {
                     content: {
                        id: "CVE-2023-20598",
                        options: [
                           {
                              Exploitation: "poc",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-06-27T17:12:05.139002Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            problemTypes: [
               {
                  descriptions: [
                     {
                        cweId: "CWE-269",
                        description: "CWE-269 Improper Privilege Management",
                        lang: "en",
                        type: "CWE",
                     },
                  ],
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-06-27T17:12:23.788Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T09:05:36.253Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6009",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ RX 5000 Series Graphics Cards",
               vendor: " AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ RX 6000 Series Graphics Cards",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ RX 7000 Series Graphics Cards",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ PRO W5000 Series Graphics Cards",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "Various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ PRO W6000 Series Graphics Cards",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Radeon™ PRO W7000 Series Graphics Cards",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Ryzen™ 7045 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: " Ryzen™ 7020 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Ryzen™ 7040 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Ryzen™ 7000 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Ryzen™ 6000 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
            {
               defaultStatus: "affected",
               platforms: [
                  "Windows",
                  "x86",
               ],
               product: "Ryzen™ 7035 Series Processors with Radeon™ Graphics",
               vendor: "AMD",
               versions: [
                  {
                     status: "affected",
                     version: "various ",
                  },
               ],
            },
         ],
         datePublic: "2023-10-16T17:00:00.000Z",
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "\n\n\n\n<span style=\"background-color: rgb(248, 249, 250);\">An improper privilege management in the AMD Radeon™</span>&nbsp;<span style=\"background-color: rgb(248, 249, 250);\">Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution.</span>\n\n\n\n",
                  },
               ],
               value: "\n\n\nAn improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution.\n\n\n\n",
            },
         ],
         providerMetadata: {
            dateUpdated: "2023-10-17T13:26:21.731Z",
            orgId: "b58fc414-a1e4-4f92-9d70-1add41838648",
            shortName: "AMD",
         },
         references: [
            {
               tags: [
                  "vendor-advisory",
               ],
               url: "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6009",
            },
         ],
         source: {
            advisory: "  AMD-SB-6009",
            discovery: "EXTERNAL",
         },
         x_generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "b58fc414-a1e4-4f92-9d70-1add41838648",
      assignerShortName: "AMD",
      cveId: "CVE-2023-20598",
      datePublished: "2023-10-17T13:26:21.731Z",
      dateReserved: "2022-10-27T18:53:39.763Z",
      dateUpdated: "2024-08-02T09:05:36.253Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}