CVE-2023-20588

Advisory lineage Upstream: 0 Downstream: 45

Downstream

ALPINE-CVE-2023-20588 DEBIAN-CVE-2023-20588 DLA-3623-1 DSA-5480-1 DSA-5492-1 OPENSUSE-SU-2024:13257-1

Modified

Published: 08 Aug 2023, 17:06

Last modified:17 Oct 2024, 14:23

Vulnerability Summary

Overall Risk (default)

low

23/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

5.14% LOW

5% probability -2.64%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

08 Aug 2023, 17:06

Published

Vulnerability first disclosed

17 Oct 2024, 14:23

Last Modified

Vulnerability information updated

Description

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Trends

Current EPSS score: 5.14%• Percentile: 90%

Techniques & Countermeasures

CWE-369•Divide By Zero
The product divides a value by zero.

Affected Systems

amd•athlon_gold_3150g_firmware
na
amd•athlon_gold_3150ge_firmware
na
amd•athlon_gold_pro_3150g_firmware
na
amd•athlon_gold_pro_3150ge_firmware
na
amd•athlon_pro_300ge_firmware
na
amd•athlon_silver_3050ge_firmware
na
amd•athlon_silver_pro_3125ge_firmware
na
amd•athlon™ 3000 series processors with radeon™ graphics
various
amd•athlon™ pro 3000 series processors with radeon™ vega graphics
Various
amd•epyc_7251_firmware
na
amd•epyc_7261_firmware
na
amd•epyc_7281_firmware
na
amd•epyc_7301_firmware
na
amd•epyc_7351_firmware
na
amd•epyc_7351p_firmware
na
amd•epyc_7371_firmware
na
amd•epyc_7401_firmware
na
amd•epyc_7401p_firmware
na
amd•epyc_7451_firmware
na
amd•epyc_7501_firmware
na
amd•epyc_7551_firmware
na
amd•epyc_7551p_firmware
na
amd•epyc_7571_firmware
na
amd•epyc_7601_firmware
na
amd•epyc™ 7001 processors
various
amd•ryzen_3_3200g_firmware
na
amd•ryzen_3_3200ge_firmware
na
amd•ryzen_3_pro_3200g_firmware
na
amd•ryzen_3_pro_3200ge_firmware
na
amd•ryzen_5_3400g_firmware
na
amd•ryzen_5_pro_3350g_firmware
na
amd•ryzen_5_pro_3350ge_firmware
na
amd•ryzen_5_pro_3400g_firmware
na
amd•ryzen_5_pro_3400ge_firmware
na
amd•ryzen™ 3000 series processors with radeon™ graphics
various
amd•ryzen™ pro 3000 series processors with radeon™ vega graphics
various
debian•debian_linux
10.0 | 11.0 | 12.0
fedoraproject•fedora
37 | 38 | 39
microsoft•windows_10_1507
< 10.0.10240.20345
microsoft•windows_10_1607
< 10.0.14393.6529
microsoft•windows_10_1809
< 10.0.17763.5206
microsoft•windows_10_21h2
< 10.0.19044.3803
microsoft•windows_10_22h2
< 10.0.19045.3803
microsoft•windows_11_21h2
< 10.0.22000.2652
microsoft•windows_11_22h2
< 10.0.22621.2861
microsoft•windows_11_23h2
< 10.0.22631.2861
microsoft•windows_server_2008
na | r2:sp1
microsoft•windows server 2012
na | r2
microsoft•windows server 2016
< 10.0.14393.6529
microsoft•windows server 2019
< 10.0.17763.5206

Showing first 50 affected entries in server-rendered view.