Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-31343
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1220
Source: NVD (National Vulnerability Database)
Vulnerability Title
AMD Server Processor 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD Server Processor是美国超威半导体(AMD)公司的面向服务器市场的处理器产品,主要用于数据中心、云计算、高性能计算等领域。 AMD Server Processor存在输入验证错误漏洞,该漏洞源于SMM处理程序中的不正确的输入验证可能允许特权攻击者覆盖SMRAM,从而可能导致任意代码执行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
AMDAMD EPYC™ 7003 Processors MilanPI 1.0.0.C -
AMDAMD EPYC™ 9004 Processors GenoaPI 1.0.0.B -
AMDAMD Instinct™ MI300A MI300API 1.0.0.5 -
AMDAMD Ryzen™ 3000 Series Desktop Processors ComboAM4v2PI 1.2.0.C -
AMDAMD Ryzen™ 5000 Series Desktop Processors ComboAM4v2PI 1.2.0.C -
AMDAMD Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics ComboAM4v2PI 1.2.0.C -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5 1.1.0.2 -
AMDAMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics ComboAM4v2PI 1.2.0.C -
AMDAMD Ryzen™ 4000 Series Desktop Processor with Radeon™ Graphics ComboAM4v2PI 1.2.0.C -
AMDAMD Ryzen™ 8000 Series Processor with Radeon™ Graphics ComboAM5 1.1.0.2 -
AMDAMD Ryzen™ Threadripper™ PRO 5000WX- Series Desktop Processors ChagallWSPI-sWRX8 1.0.0.7 -
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics "Pollock-FT5 1.0.0.7" -
AMDAMD Ryzen™ 3000 Series Mobile Processor with Radeon™ Graphics "Picasso-FP5 1.0.1.1" -
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics "RenoirPI-FP6 1.0.0.D" -
AMDAMD Ryzen™ 5000 Series Processors with Radeon™ Graphics "Cezanne-FP6 1.0.1.0" -
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ Graphics "MendocinoPI-FT6 1.0.0.6" -
AMDAMD Ryzen™ 6000 Series Processor with Radeon™ Graphics "Rembrandt-FP7 1.0.0.A" -
AMDAMD Ryzen™ 7035 Series Processor with Radeon™ Graphics "Rembrandt-FP7 1.0.0.A" -
AMDAMD Ryzen™ 7040 Series Processors with Radeon™ Graphics "PhoenixPI-FP8-FP7 1.1.0.2" -
AMDAMD Ryzen™ 7000 Series Mobile Processors "DragonRangeFL1PI 1.0.0.3C" -
AMDAMD EPYC™ Embedded 7003 "EmbMilanPI-SP3 1.0.0.8" -
AMDAMD EPYC™ Embedded 9004--
AMDAMD Ryzen™ Embedded R1000--
AMDAMD Ryzen™ Embedded R2000 "EmbeddedR2KPI-FP5 1.0.0.3" -
AMDAMD Ryzen™ Embedded 5000 "EmbAM4PI 1.0.0.5" -
AMDAMD Ryzen™ Embedded 7000 EmbeddedAM5PI 1.0.0.1 -
AMDAMD Ryzen™ Embedded V2000 "EmbeddedPI-FP6 1.0.0.9" -
AMDAMD Ryzen™ Embedded V3000 "Embedded-PI FP7r2 1.0.0.9" -
II. Public POCs for CVE-2023-31343
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2023-31343
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: AMD EPYC™ 7003 Processors
Same vendor: AMD
Same weakness: CWE-1220
V. Comments for CVE-2023-31343

No comments yet

Leave a comment