Security Advisory

CVE-2023-31305

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-13 16:53:42
Last updated 2024-11-06 15:22:36
Assigner AMD
State PUBLISHED

Description

Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware) may allow an attacker with privileges to reuse IV values to reverse-engineer debug data, potentially resulting in information disclosure.