Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-20521

TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of service.

Published

2023-11-14T19:15:15.580

Last Modified

2024-11-21T07:41:04.330

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 3.3 (LOW)

Weaknesses

Type: Primary
CWE-367

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	amd	epyc_7001_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7001	-	No
Operating System	amd	epyc_7251_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7251	-	No
Operating System	amd	epyc_7261_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7261	-	No
Operating System	amd	epyc_7281_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7281	-	No
Operating System	amd	epyc_7301_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7301	-	No
Operating System	amd	epyc_7351_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7351	-	No
Operating System	amd	epyc_7351p_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7351p	-	No
Operating System	amd	epyc_7371_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7371	-	No
Operating System	amd	epyc_7401_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7401	-	No
Operating System	amd	epyc_7401p_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7401p	-	No
Operating System	amd	epyc_7451_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7451	-	No
Operating System	amd	epyc_7501_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7501	-	No
Operating System	amd	epyc_7551_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7551	-	No
Operating System	amd	epyc_7551p_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7551p	-	No
Operating System	amd	epyc_7601_firmware	< naplespi_1.0.0.h	Yes
Hardware	amd	epyc_7601	-	No
Operating System	amd	epyc_7232p_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7232p	-	No
Operating System	amd	epyc_7252_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7252	-	No
Operating System	amd	epyc_7262_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7262	-	No
Operating System	amd	epyc_7272_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7272	-	No
Operating System	amd	epyc_7282_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7282	-	No
Operating System	amd	epyc_7302_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7302	-	No
Operating System	amd	epyc_7302p_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7302p	-	No
Operating System	amd	epyc_7352_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7352	-	No
Operating System	amd	epyc_7402_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7402	-	No
Operating System	amd	epyc_7402p_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7402p	-	No
Operating System	amd	epyc_7452_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7452	-	No
Operating System	amd	epyc_7502_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7502	-	No
Operating System	amd	epyc_7502p_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7502p	-	No
Operating System	amd	epyc_7532_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7532	-	No
Operating System	amd	epyc_7542_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7542	-	No
Operating System	amd	epyc_7552_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7552	-	No
Operating System	amd	epyc_7642_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7642	-	No
Operating System	amd	epyc_7662_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7662	-	No
Operating System	amd	epyc_7702_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7702	-	No
Operating System	amd	epyc_7702p_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7702p	-	No
Operating System	amd	epyc_7742_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7742	-	No
Operating System	amd	epyc_7f32_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7f32	-	No
Operating System	amd	epyc_7f52_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7f52	-	No
Operating System	amd	epyc_7f72_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7f72	-	No
Operating System	amd	epyc_7h12_firmware	< romepi_1.0.0.d	Yes
Hardware	amd	epyc_7h12	-	No
Operating System	amd	epyc_7763_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7763	-	No
Operating System	amd	epyc_7713p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7713p	-	No
Operating System	amd	epyc_7713_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7713	-	No
Operating System	amd	epyc_7663p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7663p	-	No
Operating System	amd	epyc_7663_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7663	-	No
Operating System	amd	epyc_7643p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7643p	-	No
Operating System	amd	epyc_7773x_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7773x	-	No
Operating System	amd	epyc_7643_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7643	-	No
Operating System	amd	epyc_7573x_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7573x	-	No
Operating System	amd	epyc_75f3_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_75f3	-	No
Operating System	amd	epyc_7543p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7543p	-	No
Operating System	amd	epyc_7543_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7543	-	No
Operating System	amd	epyc_7513_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7513	-	No
Operating System	amd	epyc_7473x_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7473x	-	No
Operating System	amd	epyc_7453_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7453	-	No
Operating System	amd	epyc_74f3_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_74f3	-	No
Operating System	amd	epyc_7443p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7443p	-	No
Operating System	amd	epyc_7443_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7443	-	No
Operating System	amd	epyc_7413_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7413	-	No
Operating System	amd	epyc_7373x_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7373x	-	No
Operating System	amd	epyc_73f3_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_73f3	-	No
Operating System	amd	epyc_7343_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7343	-	No
Operating System	amd	epyc_7313p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7313p	-	No
Operating System	amd	epyc_7313_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7313	-	No
Operating System	amd	epyc_7303p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7303p	-	No
Operating System	amd	epyc_7303_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7303	-	No
Operating System	amd	epyc_72f3_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_72f3	-	No
Operating System	amd	epyc_7203p_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7203p	-	No
Operating System	amd	epyc_7203_firmware	< milanpi_1.0.0.7	Yes
Hardware	amd	epyc_7203	-	No
Operating System	amd	athlon_pro_300ge_firmware	-	Yes
Hardware	amd	athlon_pro_300ge	-	No
Operating System	amd	athlon_gold_pro_3150ge_firmware	-	Yes
Hardware	amd	athlon_gold_pro_3150ge	-	No
Operating System	amd	athlon_gold_3150g_firmware	-	Yes
Hardware	amd	athlon_gold_3150g	-	No
Operating System	amd	athlon_gold_pro_3150g_firmware	-	Yes
Hardware	amd	athlon_gold_pro_3150g	-	No
Operating System	amd	ryzen_threadripper_2990wx_firmware	< summitpi-sp3r2_1.1.0.6	Yes
Hardware	amd	ryzen_threadripper_2990wx	-	No
Operating System	amd	ryzen_threadripper_2970wx_firmware	< summitpi-sp3r2_1.1.0.6	Yes
Hardware	amd	ryzen_threadripper_2970wx	-	No
Operating System	amd	ryzen_threadripper_2950x_firmware	< summitpi-sp3r2_1.1.0.6	Yes
Hardware	amd	ryzen_threadripper_2950x	-	No
Operating System	amd	ryzen_threadripper_2920x_firmware	< summitpi-sp3r2_1.1.0.6	Yes
Hardware	amd	ryzen_threadripper_2920x	-	No
Operating System	amd	ryzen_7_3780u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_7_3780u	-	No
Operating System	amd	ryzen_7_3750h_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_7_3750h	-	No
Operating System	amd	ryzen_7_3700c_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_7_3700c	-	No
Operating System	amd	ryzen_7_3700u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_7_3700u	-	No
Operating System	amd	ryzen_5_3580u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_5_3580u	-	No
Operating System	amd	ryzen_5_3550h_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_5_3550h	-	No
Operating System	amd	ryzen_5_3500c_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_5_3500c	-	No
Operating System	amd	ryzen_5_3500u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_5_3500u	-	No
Operating System	amd	ryzen_5_3450u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_5_3450u	-	No
Operating System	amd	ryzen_3_3350u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_3_3350u	-	No
Operating System	amd	ryzen_3_3300u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_3_3300u	-	No
Operating System	amd	ryzen_3_3250u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_3_3250u	-	No
Operating System	amd	ryzen_3_3250c_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_3_3250c	-	No
Operating System	amd	ryzen_3_3200u_firmware	< picassopi-fp5_1.0.0.e	Yes
Hardware	amd	ryzen_3_3200u	-	No
Operating System	amd	amd_3015e_firmware	< pollockpi-ft5_1.0.0.4	Yes
Hardware	amd	amd_3015e	-	No
Operating System	amd	amd_3015ce_firmware	< pollockpi-ft5_1.0.0.4	Yes
Hardware	amd	amd_3015ce	-	No

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 Vendor Advisory ([email protected])
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 Vendor Advisory ([email protected])
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 ([email protected])
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 (af854a3a-2127-422b-91ae-364da2661108)