CVE-2023-20569

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled?address, potentially leading to information disclosure.

Published: Aug 8, 2023
Updated: May 10, 2024
CVE: CVE-2023-20569
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.7
AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-203

Affected Software
References

Software	From	Fixed in
fedoraproject / fedora	37	37.x
fedoraproject / fedora	38	38.x
debian / debian_linux	10.0	10.0.x
debian / debian_linux	11.0	11.0.x
debian / debian_linux	12.0	12.0.x
amd / ryzen_9_5950x_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_9_5900x_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_9_5900_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_9_pro_5945_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5800x3d_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5800x_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5800_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5700x_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_pro_5845_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5600x3d_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5600x_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5600_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_pro_5645_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5700_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5500_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_3_5100_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5700g_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_7_5700ge_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5600g_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_5_5600ge_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_3_5300g_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_3_5300ge_firmware	-	comboam4v2pi_1.2.0.b
amd / ryzen_9_7950x3d_firmware	-	comboam5_1.0.8.0
amd / ryzen_9_7950x_firmware	-	comboam5_1.0.8.0
amd / ryzen_9_7900x3d_firmware	-	comboam5_1.0.8.0
amd / ryzen_9_7900x_firmware	-	comboam5_1.0.8.0
amd / ryzen_9_7900_firmware	-	comboam5_1.0.8.0
amd / ryzen_9_pro_7945_firmware	-	comboam5_1.0.8.0
amd / ryzen_7_7800x3d_firmware	-	comboam5_1.0.8.0
amd / ryzen_7_7700x_firmware	-	comboam5_1.0.8.0
amd / ryzen_7_7700_firmware	-	comboam5_1.0.8.0
amd / ryzen_7_pro_7745_firmware	-	comboam5_1.0.8.0
amd / ryzen_5_7600x_firmware	-	comboam5_1.0.8.0
amd / ryzen_5_7600_firmware	-	comboam5_1.0.8.0
amd / ryzen_5_pro_7645_firmware	-	comboam5_1.0.8.0
amd / ryzen_5_7500f_firmware	-	comboam5_1.0.8.0
amd / ryzen_threadripper_pro_5995wx_firmware	-	chagallwspi-swrx8_1.0.0.7
amd / ryzen_threadripper_pro_5975wx_firmware	-	chagallwspi-swrx8_1.0.0.7
amd / ryzen_threadripper_pro_5965wx_firmware	-	chagallwspi-swrx8_1.0.0.7
amd / ryzen_threadripper_pro_5955wx_firmware	-	chagallwspi-swrx8_1.0.0.7
amd / ryzen_threadripper_pro_5945wx_firmware	-	chagallwspi-swrx8_1.0.0.7
amd / ryzen_7_5700u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5500u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_3_5300u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_5980hx_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_5980hs_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_5900hx_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_5900hs_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_7_5800h_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_7_5800hs_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_7_5825u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_7_5800u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5600h_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5600hs_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5625u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5600u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_5560u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_3_5425u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_3_5400u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_3_5125c_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_6980hx_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_9_6980hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_9_6900hx_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_9_6900hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_6800h_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_6800hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_6800u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_5_6600h_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_5_6600hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_5_6600u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_7735hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_7736u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_7735u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_5_7535hs_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_5_7535u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_3_7335u_firmware	-	rembrandtpi-fp7_1.0.0.9a
amd / ryzen_7_pro_7730u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_5_pro_7530u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_3_pro_7330u_firmware	-	cezannepi-fp6_1.0.0.fa
amd / ryzen_9_pro_7640hs_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_9_7940h_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_7_pro_7840hs_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_7_7840h_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_7_7840u_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_5_pro_7640hs_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_5_7640h_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_5_7640u_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_5_7540u_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_3_7440u_firmware	-	phoenixpi-fp8-fp7_1.0.0.2a
amd / ryzen_9_7945hx3d_firmware	-	dragonrangefl1pi_1.0.0.3b
amd / ryzen_9_7945hx_firmware	-	dragonrangefl1pi_1.0.0.3b
amd / ryzen_9_7845hx_firmware	-	dragonrangefl1pi_1.0.0.3b
amd / ryzen_7_7745hx_firmware	-	dragonrangefl1pi_1.0.0.3b
amd / ryzen_5_7645hx_firmware	-	dragonrangefl1pi_1.0.0.3b
amd / epyc_7773x_firmware	-	milanpi_1.0.0.c
amd / epyc_7763_firmware	-	milanpi_1.0.0.c
amd / epyc_7713_firmware	-	milanpi_1.0.0.c
amd / epyc_7713p_firmware	-	milanpi_1.0.0.c
amd / epyc_7663_firmware	-	milanpi_1.0.0.c
amd / epyc_7643_firmware	-	milanpi_1.0.0.c
amd / epyc_7573x_firmware	-	milanpi_1.0.0.c
amd / epyc_75f3_firmware	-	milanpi_1.0.0.c
amd / epyc_7543_firmware	-	milanpi_1.0.0.c
amd / epyc_7543p_firmware	-	milanpi_1.0.0.c
amd / epyc_7513_firmware	-	milanpi_1.0.0.c
amd / epyc_7453_firmware	-	milanpi_1.0.0.c
amd / epyc_7473x_firmware	-	milanpi_1.0.0.c
amd / epyc_74f3_firmware	-	milanpi_1.0.0.c
amd / epyc_7443_firmware	-	milanpi_1.0.0.c
amd / epyc_7443p_firmware	-	milanpi_1.0.0.c
amd / epyc_7413_firmware	-	milanpi_1.0.0.c
amd / epyc_7373x_firmware	-	milanpi_1.0.0.c
amd / epyc_73f3_firmware	-	milanpi_1.0.0.c
amd / epyc_7343_firmware	-	milanpi_1.0.0.c
amd / epyc_7313_firmware	-	milanpi_1.0.0.c
amd / epyc_7313p_firmware	-	milanpi_1.0.0.c
amd / epyc_72f3_firmware	-	milanpi_1.0.0.c
amd / epyc_9124_firmware	-	genoapi_1.0.0.9
amd / epyc_9224_firmware	-	genoapi_1.0.0.9
amd / epyc_9254_firmware	-	genoapi_1.0.0.9
amd / epyc_9334_firmware	-	genoapi_1.0.0.9
amd / epyc_9354_firmware	-	genoapi_1.0.0.9
amd / epyc_9354p_firmware	-	genoapi_1.0.0.9
amd / epyc_9174f_firmware	-	genoapi_1.0.0.9
amd / epyc_9184x_firmware	-	genoapi_1.0.0.9
amd / epyc_9274f_firmware	-	genoapi_1.0.0.9
amd / epyc_9374f_firmware	-	genoapi_1.0.0.9
amd / epyc_9384x_firmware	-	genoapi_1.0.0.9
amd / epyc_9474f_firmware	-	genoapi_1.0.0.9
amd / epyc_9454_firmware	-	genoapi_1.0.0.9
amd / epyc_9454p_firmware	-	genoapi_1.0.0.9
amd / epyc_9534_firmware	-	genoapi_1.0.0.9
amd / epyc_9554_firmware	-	genoapi_1.0.0.9
amd / epyc_9554p_firmware	-	genoapi_1.0.0.9
amd / epyc_9634_firmware	-	genoapi_1.0.0.9
amd / epyc_9654_firmware	-	genoapi_1.0.0.9
amd / epyc_9654p_firmware	-	genoapi_1.0.0.9
amd / epyc_9684x_firmware	-	genoapi_1.0.0.9
amd / epyc_9734_firmware	-	genoapi_1.0.0.9
amd / epyc_9754s_firmware	-	genoapi_1.0.0.9
amd / epyc_9754_firmware	-	genoapi_1.0.0.9
microsoft / windows_server_2008	r2-sp1	r2-sp1.x
microsoft / windows_server_2012	r2	r2.x
microsoft / windows_server_2008	--sp2	--sp2.x
microsoft / windows_10_21h2	-	10.0.19044.3324
microsoft / windows_10_1607	-	10.0.14393.6167
microsoft / windows_10_22h2	-	10.0.19045.3324
microsoft / windows_11_21h2	-	10.0.22000.2295
microsoft / windows_11_22h2	-	10.0.22621.2134
microsoft / windows_10_1507	-	10.0.10240.20107
microsoft / windows_10_1809	-	10.0.17763.5206
microsoft / windows_server_2016	-	10.0.14393.6167
microsoft / windows_server_2019	-	10.0.17763.4737
microsoft / windows_server_2022	-	10.0.20348.1906

Vulnerability Database

289,571

CVE-2023-20569