What is CVE-2023-20573?

CVE-2023-20573 is a vulnerability in Amd 3rd Gen Epyc™ Processors. Published 2024-01-11.

Is CVE-2023-20573 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Amd 3rd Gen Epyc™ Processors

CVE-2023-20573

A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially resulting in guests not receiving expected debug information.

EPSS: 0.001 (23.9th percentile) — read the EPSS interpretation.

Affected products

Amd 3rd Gen Epyc™ Processors — versions various
Amd 4th Gen Epyc™ Processors — versions Various

Public proof-of-concept exploits

Freax13/cve-2023-20573-poc
nomi-sec/PoC-in-GitHub

References

www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3006 (vendor-advisory)

Frequently asked questions

What is CVE-2023-20573?: CVE-2023-20573 is a vulnerability in Amd 3rd Gen Epyc™ Processors. Published 2024-01-11.
Is CVE-2023-20573 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.