CVE-2020-12954

Name of the Vulnerable Software and Affected Versions AMD EPYC AGESA PI (affected versions not specified)

Description The issue is related to a side effect of an integrated chipset option that can be exploited by an attacker to bypass SPI ROM protections, allowing unauthorized modification of the SPI ROM. This is due to errors in the integrated chipset. The exploitation of this issue can enable an attacker to circumvent the SPI ROM protection mechanism, potentially leading to data modification.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.