CVE-2023-20563

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 14, 2023

Updated: Feb 13, 2024

CWE ID 269

Summary

CVE-2023-20563 is a vulnerability affecting System Management Mode (SMM) code. This issue arises due to insufficient protections in the SMM code, which could potentially enable an attacker to escalate privileges through local access. The attacker could exploit this vulnerability to gain elevated system access, potentially leading to unauthorized system modifications or data theft. The precise methods to exploit this vulnerability are not yet publicly known, but system administrators are advised to apply relevant patches or updates as soon as they become available to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Advanced Micro Devices

Advisories, Assessments, and Mitigations

Back to Vulnerability Database