CVE-2023-20508

Description

Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

Low

Affected products

AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Instinct™ MI300AMI300PI 1.0.0.5 – MI300PI 1.0.0.5
AMD / AMD Instinct™ MI300XBKC 24.12 – BKC 24.12
AMD / AMD Radeon™ Instinct™ MI25Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO V520Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO V620Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO V710Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 3000 Series Mobile Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 3000 Series Mobile Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 4000 Series Desktop Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 4000 Series Desktop Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 5000 Series Desktop ProcessorsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 5000 Series Desktop ProcessorsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 6000 Series Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 6000 Series Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7000 Series Desktop ProcessorsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7000 Series Desktop ProcessorsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7030 Series Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7030 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7035 Series Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7035 Series Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7040 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 7040 Series Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7045 Series Mobile ProcessorsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)
AMD / AMD Ryzen™ 7045 Series Mobile ProcessorsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 8000 Series Processor with Radeon™ GraphicsAMD Software: PRO Edition 24.Q2 (24.10.20) – AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD / AMD Ryzen™ 8000 Series Processor with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.7.1 (24.10.29.01) – AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01)

References

MISChttps://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html