CVE-2023-20564
CVSS 3.1 Score 6.7 of 10 (medium)
Details
Published Aug 15, 2023
Updated: Aug 23, 2023
CWE ID 20
Summary
CVE-2023-20564 is a vulnerability affecting AMD Ryzen™ Master software. It stems from insufficient validation of the IOCTL (Input Output Control) input buffer. This issue allows privileged attackers to perform memory reads/writes, potentially leading to a loss of confidentiality or arbitrary kernel execution. Exploitation of this vulnerability could result in severe consequences, making it a significant security concern. AMD is encouraged to release a patch to mitigate the risk associated with this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share