Insufficient Protections in System Management Mode Affects AMD Products
CVE-2023-20563
7.8HIGH
Key Information:
- Vendor
Amd
- Status
- Vendor
- CVE Published:
- 14 November 2023
What is CVE-2023-20563?
The identified vulnerability arises from inadequate security measures in the System Management Mode (SMM) code of AMD processors. This oversight may permit attackers with local access to escalate their privileges, potentially compromising system integrity. To mitigate risks, users are advised to apply the latest patches and follow guidelines provided by AMD to enhance their security posture against such exploitation.
Affected Version(s)
AMD Ryzen™ Embedded 5000 various
AMD Ryzen™ Embedded R1000 various
AMD Ryzen™ Embedded R2000 various