CVE-2023-20508 - Vulnerability Details - OpenCVE

Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00025.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2023-24687	Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html

History

Fri, 11 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00035}`	epss `{'score': 0.00021}`

Wed, 12 Feb 2025 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 11 Feb 2025 23:45:00 +0000

Type	Values Removed	Values Added
Description		Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.
Weaknesses		CWE-1284
References		https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html
Metrics		cvssV3_1 `{'score': 5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2025-02-11T23:34:02.874Z

Updated: 2025-02-12T15:33:36.214Z

Reserved: 2022-10-27T18:53:39.735Z

Link: CVE-2023-20508

Vulnrichment

Updated: 2025-02-12T15:33:23.259Z

NVD

Status : Received

Published: 2025-02-12T00:15:07.850

Modified: 2025-02-12T00:15:07.850

Link: CVE-2023-20508

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-1284

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-20508", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "state": "PUBLISHED", "assignerShortName": "AMD", "dateReserved": "2022-10-27T18:53:39.735Z", "datePublished": "2025-02-11T23:34:02.874Z", "dateUpdated": "2025-02-12T15:33:36.214Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "AMD Radeon\u2122 RX 6000 Series Graphics Products", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Radeon\u2122 PRO W6000 Series Graphics Products", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "unknown", "product": "AMD Radeon\u2122 Instinct\u2122 MI25", "vendor": "AMD", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}]}, {"defaultStatus": "unknown", "product": "AMD Radeon\u2122 PRO V520", "vendor": "AMD", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}]}, {"defaultStatus": "unknown", "product": "AMD Radeon\u2122 PRO V620", "vendor": "AMD", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}]}, {"defaultStatus": "unknown", "product": "AMD Radeon\u2122 PRO V710", "vendor": "AMD", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}]}, {"defaultStatus": "affected", "product": "AMD Instinct\u2122 MI300A", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "MI300PI 1.0.0.5"}]}, {"defaultStatus": "affected", "product": "AMD Instinct\u2122 MI300X", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "BKC 24.12"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Desktop Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Athlon\u2122 3000 Series Desktop Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Desktop Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 3000 Series Mobile Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 4000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7020 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 4000 Series Desktop Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 8000 Series Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 6000 Series Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7035 Series Processor with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7030 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7040 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7000 Series Desktop Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7045 Series Mobile Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability."}], "value": "Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1284", "description": "CWE-1284 Improper Validation of Specified Quantity in Input", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2025-02-11T23:34:02.874Z"}, "references": [{"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-12T15:33:25.967588Z", "id": "CVE-2023-20508", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-12T15:33:36.214Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-20508", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-02-12T15:33:25.967588Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-12T15:33:23.259Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "HIGH", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "AMD", "product": "AMD Radeon\u2122 RX 6000 Series Graphics Products", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Radeon\u2122 PRO W6000 Series Graphics Products", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Radeon\u2122 Instinct\u2122 MI25", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}], "defaultStatus": "unknown"}, {"vendor": "AMD", "product": "AMD Radeon\u2122 PRO V520", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}], "defaultStatus": "unknown"}, {"vendor": "AMD", "product": "AMD Radeon\u2122 PRO V620", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}], "defaultStatus": "unknown"}, {"vendor": "AMD", "product": "AMD Radeon\u2122 PRO V710", "versions": [{"status": "unknown", "version": "Contact your AMD Customer Engineering representative"}], "defaultStatus": "unknown"}, {"vendor": "AMD", "product": "AMD Instinct\u2122 MI300A", "versions": [{"status": "unaffected", "version": "MI300PI 1.0.0.5"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Instinct\u2122 MI300X", "versions": [{"status": "unaffected", "version": "BKC 24.12"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 5000 Series Desktop Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Athlon\u2122 3000 Series Desktop Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 5000 Series Desktop Processors", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 3000 Series Mobile Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 4000 Series Mobile Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7020 Series Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 4000 Series Desktop Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 8000 Series Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 6000 Series Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7035 Series Processor with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 5000 Series Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7030 Series Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7040 Series Processors with Radeon\u2122 Graphics", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7000 Series Desktop Processors", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "AMD Ryzen\u2122 7045 Series Mobile Processors", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)"}, {"status": "unaffected", "version": "AMD Software: PRO Edition 24.Q2 (24.10.20)"}], "defaultStatus": "affected"}], "references": [{"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.", "supportingMedia": [{"type": "text/html", "value": "Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1284", "description": "CWE-1284 Improper Validation of Specified Quantity in Input"}]}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2025-02-11T23:34:02.874Z"}}}, "cveMetadata": {"cveId": "CVE-2023-20508", "state": "PUBLISHED", "dateUpdated": "2025-02-12T15:33:36.214Z", "dateReserved": "2022-10-27T18:53:39.735Z", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "datePublished": "2025-02-11T23:34:02.874Z", "assignerShortName": "AMD"}, "dataVersion": "5.1"}