{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2023-20588", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "state": "PUBLISHED", "assignerShortName": "AMD", "dateReserved": "2022-10-27T18:53:39.759Z", "datePublished": "2023-08-08T17:06:30.065Z", "dateUpdated": "2024-10-17T14:23:18.239Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "packageName": " ", "platforms": ["x86"], "product": "EPYC\u2122 7001 Processors", "vendor": "AMD", "versions": [{"status": "affected", "version": "various "}]}, {"defaultStatus": "affected", "platforms": ["x86"], "product": "Athlon\u2122 3000 Series Processors with Radeon\u2122 Graphics ", "vendor": "AMD", "versions": [{"status": "affected", "version": "various "}]}, {"defaultStatus": "affected", "packageName": " ", "platforms": ["x86"], "product": "Ryzen\u2122 3000 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "affected", "version": "various "}]}, {"defaultStatus": "affected", "platforms": ["x86"], "product": "Athlon\u2122 PRO 3000 Series Processors with Radeon\u2122 Vega Graphics ", "vendor": "AMD", "versions": [{"status": "affected", "version": "Various "}]}, {"defaultStatus": "affected", "platforms": ["x86"], "product": "Ryzen\u2122 PRO 3000 Series Processors with Radeon\u2122 Vega Graphics", "vendor": "AMD", "versions": [{"status": "affected", "version": "various "}]}], "datePublic": "2023-08-08T16:30:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n"}], "value": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.\u00a0\n\n\n\n\n\n\n\n"}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2023-08-08T17:06:30.065Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007"}, {"url": "https://www.debian.org/security/2023/dsa-5480"}, {"url": "https://www.debian.org/security/2023/dsa-5492"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/3"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/4"}, {"url": "http://xenbits.xen.org/xsa/advisory-439.html"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/5"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/8"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/7"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/5"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/8"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/9"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/27/1"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/14"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/9"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/15"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/12"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/13"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/16"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/1"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/2"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/4"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/3"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"}, {"url": "https://security.netapp.com/advisory/ntap-20240531-0005/"}], "source": {"advisory": "AMD-SB-7007", "discovery": "UNKNOWN"}, "title": "Speculative Leaks", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T09:05:36.921Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007"}, {"url": "https://www.debian.org/security/2023/dsa-5480", "tags": ["x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5492", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/3", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/4", "tags": ["x_transferred"]}, {"url": "http://xenbits.xen.org/xsa/advisory-439.html", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/5", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/8", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/7", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/5", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/8", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/9", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/27/1", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/14", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/9", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/15", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/12", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/13", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/16", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/2", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/4", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/3", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20240531-0005/", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-10-17T14:23:03.408701Z", "id": "CVE-2023-20588", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-17T14:23:18.239Z"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5480", "tags": ["x_transferred"]}, {"url": "https://www.debian.org/security/2023/dsa-5492", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/3", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/4", "tags": ["x_transferred"]}, {"url": "http://xenbits.xen.org/xsa/advisory-439.html", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/5", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/8", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/7", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/5", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/8", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/9", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/27/1", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/14", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/9", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/15", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/12", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/13", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/16", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/2", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/4", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/3", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20240531-0005/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T09:05:36.921Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-20588", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-10-17T14:23:03.408701Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-10-17T14:23:11.970Z"}}], "cna": {"title": "Speculative Leaks", "source": {"advisory": "AMD-SB-7007", "discovery": "UNKNOWN"}, "affected": [{"vendor": "AMD", "product": "EPYC\u2122 7001 Processors", "versions": [{"status": "affected", "version": "various "}], "platforms": ["x86"], "packageName": " ", "defaultStatus": "affected"}, {"vendor": "AMD", "product": "Athlon\u2122 3000 Series Processors with Radeon\u2122 Graphics ", "versions": [{"status": "affected", "version": "various "}], "platforms": ["x86"], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "Ryzen\u2122 3000 Series Processors with Radeon\u2122 Graphics", "versions": [{"status": "affected", "version": "various "}], "platforms": ["x86"], "packageName": " ", "defaultStatus": "affected"}, {"vendor": "AMD", "product": "Athlon\u2122 PRO 3000 Series Processors with Radeon\u2122 Vega Graphics ", "versions": [{"status": "affected", "version": "Various "}], "platforms": ["x86"], "defaultStatus": "affected"}, {"vendor": "AMD", "product": "Ryzen\u2122 PRO 3000 Series Processors with Radeon\u2122 Vega Graphics", "versions": [{"status": "affected", "version": "various "}], "platforms": ["x86"], "defaultStatus": "affected"}], "datePublic": "2023-08-08T16:30:00.000Z", "references": [{"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007", "tags": ["vendor-advisory"]}, {"url": "https://www.debian.org/security/2023/dsa-5480"}, {"url": "https://www.debian.org/security/2023/dsa-5492"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/3"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/4"}, {"url": "http://xenbits.xen.org/xsa/advisory-439.html"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/5"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/8"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/25/7"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/5"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/8"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/26/9"}, {"url": "http://www.openwall.com/lists/oss-security/2023/09/27/1"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/14"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/9"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/15"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/12"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/13"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/03/16"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/1"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/2"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/4"}, {"url": "http://www.openwall.com/lists/oss-security/2023/10/04/3"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"}, {"url": "https://security.netapp.com/advisory/ntap-20240531-0005/"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.\u00a0\n\n\n\n\n\n\n\n", "supportingMedia": [{"type": "text/html", "value": "\n\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. \n\n\n\n\n\n\n\n", "base64": false}]}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2023-08-08T17:06:30.065Z"}}}, "cveMetadata": {"cveId": "CVE-2023-20588", "state": "PUBLISHED", "dateUpdated": "2024-10-17T14:23:18.239Z", "dateReserved": "2022-10-27T18:53:39.759Z", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "datePublished": "2023-08-08T17:06:30.065Z", "assignerShortName": "AMD"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*", "matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7351p_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5FB895BB-AEA5-4A4E-A9DE-EAD48656187D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7351p:-:*:*:*:*:*:*:*", "matchCriteriaId": "9BB78361-9AAD-44BD-8B30-65715FEA4C06", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7401p_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "23D64F03-2F90-490B-844B-5F0F08B49294", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7401p:-:*:*:*:*:*:*:*", "matchCriteriaId": "A2E41A87-7A39-4BB2-88E4-16DF0D81BFD2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7551p_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "ED76988B-0245-4C25-876C-CACC57B04B8D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7551p:-:*:*:*:*:*:*:*", "matchCriteriaId": "01BE5D42-1C62-4381-89E0-8F3264F696EC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7251_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5B92B63F-3C30-4C00-9734-37CCA865FED9", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7251:-:*:*:*:*:*:*:*", "matchCriteriaId": "565383C4-F690-4E3B-8A6A-B7D4ACCFAA05", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7261_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "49CEC694-DF98-47C7-8C7B-0A26EDC413BA", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7261:-:*:*:*:*:*:*:*", "matchCriteriaId": "71ED05E6-8E69-41B9-9A36-CCE2D59A2603", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7281_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "A4847AB9-1A77-46BD-9236-FE8FFC4670B5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7281:-:*:*:*:*:*:*:*", "matchCriteriaId": "805B4FEA-CFB2-429C-818B-9277B6D546C3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7301_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "CE35B376-F439-428B-A299-CBEEE0BEFF3E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7301:-:*:*:*:*:*:*:*", "matchCriteriaId": "F65FC5B9-0803-4D7F-8EF6-7B6681418596", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7351_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "014AE81A-ACEE-4E0A-A3FF-412DF86AE00C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7351:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A5FC951-9FAD-45B4-B7CF-D1A9482507F5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7371_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1AB8E11E-5816-4ABB-849F-E10C1CFB39ED", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7371:-:*:*:*:*:*:*:*", "matchCriteriaId": "FA7576CB-A818-47A1-9A0D-6B8FD105FF08", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7401_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "F08A2432-6FCE-4579-89FE-EB0348F1BE8B", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7401:-:*:*:*:*:*:*:*", "matchCriteriaId": "C05F1EF0-3576-4D47-8704-36E9FAB1D432", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7451_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "9C952A84-3DA2-448F-85AC-573C270C312D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7451:-:*:*:*:*:*:*:*", "matchCriteriaId": "51C8CF00-8FC8-4206-9028-6F104699DE76", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7501_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "F1B0CC20-FF43-4341-90BE-FA365CC4E53B", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7501:-:*:*:*:*:*:*:*", "matchCriteriaId": "4E8BAB73-6F45-49AB-8F00-49A488006F3E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7551_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7FE69C69-9D13-4DF9-A5F2-69435598CA8B", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7551:-:*:*:*:*:*:*:*", "matchCriteriaId": "1AAB403A-5A36-4DC3-A187-99127CF77BA7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7571_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "99013A91-F504-4EB4-8904-7E551573AF49", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7571:-:*:*:*:*:*:*:*", "matchCriteriaId": "E3CF0651-A320-40D1-986F-D2790488929E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7601_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D8480358-5313-4308-90F7-F93D9B11C66C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7601:-:*:*:*:*:*:*:*", "matchCriteriaId": "168076CD-1E6D-4328-AB59-4C1A90735AC4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_5_pro_3400g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D403DB4C-6053-41D1-9A69-6B2BEB3ACD40", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_5_pro_3400g:-:*:*:*:*:*:*:*", "matchCriteriaId": "43C5E75B-136B-4A60-9C2C-84D9C78C0453", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_5_3400g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5AC21C1E-D4E7-424F-A284-BBE94194B43C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_5_3400g:-:*:*:*:*:*:*:*", "matchCriteriaId": "AF3EDC73-2517-4EBF-B160-85266304D866", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_5_pro_3400ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "6DE15998-C424-4A1A-81DB-C4E15B0DF7B8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_5_pro_3400ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "2C6A9017-FE60-4087-AA9D-AFB4E444E884", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_5_pro_3350g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "40933267-3CEF-417E-BE95-37B562F37E78", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_5_pro_3350g:-:*:*:*:*:*:*:*", "matchCriteriaId": "3D242085-9B1A-4125-8070-50505531EECE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_5_pro_3350ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C9724784-3A56-4175-9829-796CF687CA09", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_5_pro_3350ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "055F87B8-FD74-44CC-A063-84E0BA2E8136", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_3_pro_3200g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "E0CF4C3B-337D-44ED-8544-A3D55AB1E62E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_3_pro_3200g:-:*:*:*:*:*:*:*", "matchCriteriaId": "C61CD3C7-E080-4C11-81BC-8D2A5D4F140C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_3_3200g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "EAFFAD03-CEE3-4C35-B6D2-627004A22934", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_3_3200g:-:*:*:*:*:*:*:*", "matchCriteriaId": "926812AD-94F0-4CB8-9890-EAB11FDC1804", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_3_3200ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "B2BB6B36-892D-434B-B590-6BEAFD4037BC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_3_3200ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A9E5D46-DB87-4420-9AC6-2ABCB0119E01", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_3_pro_3200ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF105508-6252-4101-92B5-ECA9022D4720", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_3_pro_3200ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "2BE83C48-571F-4BD6-ABE3-2B14ED510D13", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_pro_300ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "52DFA8C8-AD16-45B1-934F-AEE78C51DDAC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_pro_300ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "6F521757-7ABC-4CEB-AD06-2FD738216E8E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_gold_3150ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "9832717E-8322-4548-B6C7-DE662D2B05AA", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_gold_3150ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "11D12DB6-A9E9-4BEA-BC80-D6672A3383CD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_gold_pro_3150ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D689C088-F1F1-4368-B6AE-75D3F9582FB1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_gold_pro_3150ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "E09DC414-96EE-478E-847C-7ACB5915659B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_gold_3150g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FD375C2E-B976-4DAE-BF89-EFED1482DB28", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_gold_3150g:-:*:*:*:*:*:*:*", "matchCriteriaId": "6AE68ECE-5298-4BC1-AC24-5CF613389CDC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_gold_pro_3150g_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "420E8314-35B8-4A12-AD42-3914EBA51D4D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_gold_pro_3150g:-:*:*:*:*:*:*:*", "matchCriteriaId": "EE0FB0AF-E942-4257-A9F2-8077A753A169", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_silver_3050ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "50F48D3D-C024-45F8-A299-322FB62EF6F4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_silver_3050ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "CD0332AB-3568-4AF7-9738-3CF2923C6DDA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:athlon_silver_pro_3125ge_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "6D7122B9-4664-492C-8440-CE0C0AADAD4C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:athlon_silver_pro_3125ge:-:*:*:*:*:*:*:*", "matchCriteriaId": "368AD9F8-E7E3-4316-9671-7305FDD3D285", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:xen:xen:-:*:*:*:*:*:*:*", "matchCriteriaId": "BFA1950D-1D9F-4401-AA86-CF3028EFD286", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*", "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D", "vulnerable": true}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*", "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9", "vulnerable": true}, {"criteria": "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*", "matchCriteriaId": "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*", "matchCriteriaId": "0FA29853-AA80-4D69-B5B2-09C29B73964A", "versionEndExcluding": "10.0.10240.20345", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*", "matchCriteriaId": "1B72F8B2-FE1A-44FC-8534-66B016C3C3DC", "versionEndExcluding": "10.0.14393.6529", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*", "matchCriteriaId": "412DCA62-8009-40C3-B76C-F3791104F0C8", "versionEndExcluding": "10.0.17763.5206", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD5A8AEC-6CE1-4AE3-B877-5F5F7303CAA2", "versionEndExcluding": "10.0.19044.3803", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "E59E6692-980B-435A-B9F3-AA00939E8D97", "versionEndExcluding": "10.0.19045.3803", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "BC62CCFB-C4C4-4CD1-A291-9587375FE3C6", "versionEndExcluding": "10.0.22000.2652", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "11093E57-782B-4049-AFB2-AAFCFB4A8FF6", "versionEndExcluding": "10.0.22621.2861", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_11_23h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "3E712F1D-26F9-4E19-B012-D7F0A92D59ED", "versionEndExcluding": "10.0.22631.2861", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC76402C-20E3-4A90-B106-A2A9B61621CA", "versionEndExcluding": "10.0.14393.6529", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*", "matchCriteriaId": "B17A84AC-1AB0-416D-8F7D-8183980AEF25", "versionEndExcluding": "10.0.17763.5206", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:*:*:*:*:*:*:*:*", "matchCriteriaId": "28E51B68-6AE4-4AF2-A7D3-7728E5D314D7", "versionEndExcluding": "10.0.25398.584", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "\nA division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.\u00a0\n\n\n\n\n\n\n\n"}, {"lang": "es", "value": "Un error de divisi\u00f3n por cero en algunos procesadores AMD puede potencialmente devolver datos especulativos que resulten en una p\u00e9rdida de confidencialidad."}], "id": "CVE-2023-20588", "lastModified": "2024-11-21T07:41:10.450", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-08-08T18:15:11.653", "references": [{"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/3"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/4"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/5"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/7"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/8"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/5"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/8"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/9"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/27/1"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/12"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/13"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/14"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/15"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/16"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/9"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/1"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/2"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/3"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/4"}, {"source": "psirt@amd.com", "tags": ["Third Party Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-439.html"}, {"source": "psirt@amd.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"}, {"source": "psirt@amd.com", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/"}, {"source": "psirt@amd.com", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/"}, {"source": "psirt@amd.com", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/"}, {"source": "psirt@amd.com", "url": "https://security.netapp.com/advisory/ntap-20240531-0005/"}, {"source": "psirt@amd.com", "tags": ["Vendor Advisory"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007"}, {"source": "psirt@amd.com", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5480"}, {"source": "psirt@amd.com", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5492"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/25/8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/26/9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/09/27/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/12"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/13"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/14"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/16"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/03/9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2023/10/04/4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-439.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AGZCACEHT6ZZZGG36QQMGROBM4FLWYJX/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DIOYP4ZOBML4RCUM3MHRFZUQL445MZM3/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List"], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJTUVYZMP6BNF342DS3W7XGOGXC6JPN5/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20240531-0005/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7007"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5480"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2023/dsa-5492"}], "sourceIdentifier": "psirt@amd.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-369"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "hw: amd: division-by-zero may resulting in loss of confidentiality", "id": "2230125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2230125"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.0", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "status": "draft"}, "cwe": "CWE-369", "details": ["A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.\u00a0", "A division-by-zero error was found in hw on some AMD processors. This flaw can potentially return speculative data, resulting in loss of confidentiality."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2023-20588", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2023-08-08T18:08:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-20588\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-20588\nhttps://www.amd.com/en/resources/product-security/bulletin/amd-sb-7007.html"], "threat_severity": "Low"}