Vulnerability in Amd Athlon™ 3000 Series Desktop Processors With Radeon™ Graphics
CVE-2023-20508
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.
EPSS: 0.000 (13.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.0 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L.
Affected products
- Amd Athlon™ 3000 Series Desktop Processors With Radeon™ Graphics — versions AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01), AMD Software: PRO Edition 24.Q2 (24.10.20)
- Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics — versions AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01), AMD Software: PRO Edition 24.Q2 (24.10.20)
- Amd Instinct™ Mi300a — versions MI300PI 1.0.0.5
- Amd Instinct™ Mi300x — versions BKC 24.12
- Amd Radeon™ Instinct™ Mi25 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro V520 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro V620 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro V710 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro W6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01), AMD Software: PRO Edition 24.Q2 (24.10.20)
- Amd Radeon™ Rx 6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.7.1 (24.10.29.01), AMD Software: PRO Edition 24.Q2 (24.10.20)
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2023-20508?
- CVE-2023-20508 is a medium-severity vulnerability in Amd Athlon™ 3000 Series Desktop Processors With Radeon™ Graphics, classified under Improper Validation of Specified Quantity in Input. CVSS score: 5.0/10. Published 2025-02-11.
- How severe is CVE-2023-20508?
- Medium severity. CVSS v3 base score is 5.0 out of 10.