CVE-2023-20516

Description

Improper handling of insufficiency privileges in the ASP could allow a privileged attacker to modify Translation Map Registers (TMRs) potentially resulting in loss of confidentiality or integrity.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

Affected products

AMD / AMD Instinct™ MI210ROCm 6.3 – ROCm 6.3
AMD / AMD Instinct™ MI250ROCm 6.3 – ROCm 6.3
AMD / AMD Radeon™ Instinct™ MI25 Graphics ProductsContact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO V520 Graphics ProductsContact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
AMD / AMD Radeon™ PRO V620 Graphics ProductsContact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative

References

MISChttps://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html