Security Advisory

CVE-2023-20578

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-13 16:52:58

Last updated 2025-03-18 20:03:43

Assigner AMD

State PUBLISHED

Description

A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access to the BIOS menu or UEFI shell to modify the communications buffer potentially resulting in arbitrary code execution.

← Browse all CVEs View on cve.org ↗