CVE-2023-20555

Name of the Vulnerable Software and Affected Versions AMD CpmDisplayFeatureSmm (affected versions not specified)

Description The issue is related to insufficient input validation in CpmDisplayFeatureSmm, which may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer, potentially leading to arbitrary code execution in SMM. This can be described as a buffer overflow vulnerability in the memory of AMD processor microcode.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.