Amd Ryzen_3_5100
9 CVEs affecting Amd Ryzen_3_5100. Latest disclosed: 2023-11-14. Critical: 2, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-23821 | Critical | 9.8 | 2023-11-14 | Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution. |
CVE-2023-39281 | Critical | 9.8 | 2023-11-01 | A stack buffer overflow vulnerability discovered in AsfSecureBootDxe in Insyde InsydeH2O with kernel 5.0 through 5.5 allows attackers to run arbitrary code exe… |
CVE-2023-20571 | High | 8.1 | 2023-11-14 | A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in p… |
CVE-2023-20565 | High | 7.8 | 2023-11-14 | Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. |
CVE-2023-20563 | High | 7.8 | 2023-11-14 | Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. |
CVE-2023-20555 | High | 7.8 | 2023-08-08 | Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled poi… |
CVE-2022-23820 | High | 7.5 | 2023-11-14 | Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution. |
CVE-2023-20589 | Medium | 6.8 | 2023-08-08 | An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromis… |
CVE-2023-20569 | Medium | 4.7 | 2023-08-08 | A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execut… |