ASP Secure OS: Privilege Escalation via Buffer Overflow in TA
CVE-2022-23817 Published on August 13, 2024

Insufficient checking of memory buffer in AMD Secure Processor (ASP) Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation.

NVD

Weakness Types

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

What is a Classic Buffer Overflow Vulnerability?

The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow. A buffer overflow condition exists when a program attempts to put more data in a buffer than it can hold, or when a program attempts to put data in a memory area outside of the boundaries of a buffer. The simplest type of error, and the most common cause of buffer overflows, is the "classic" case in which the program copies the buffer without restricting how much is copied. Other variants exist, but the existence of a classic overflow strongly suggests that the programmer is not considering even the most basic of security protections.

CVE-2022-23817 has been classified to as a Classic Buffer Overflow vulnerability or weakness.

Products Associated with CVE-2022-23817

Want to know whenever a new CVE is published for AMD products? stack.watch will email you.

AMD Ryzen 9 3900 Firmware

AMD Ryzen 9 3900x Firmware

AMD Ryzen 9 3900xt Firmware

AMD Ryzen 9 3950x Firmware

AMD Ryzen 7 3700x Firmware

AMD Ryzen 7 3800x Firmware

AMD Ryzen 7 3800xt Firmware

AMD Ryzen 5 3500 Firmware

AMD Ryzen 5 3500x Firmware

AMD Ryzen 5 3600 Firmware

AMD Ryzen 5 3600x Firmware

AMD Ryzen 5 3600xt Firmware

AMD Ryzen 3 3100 Firmware

AMD Ryzen 3 3300x Firmware

AMD Ryzen 7 3700c Firmware

AMD Ryzen 7 3700u Firmware

AMD Ryzen 7 3750h Firmware

AMD Ryzen 7 3780u Firmware

AMD Ryzen 5 3450u Firmware

AMD Ryzen 5 3500c Firmware

AMD Ryzen 5 3500u Firmware

AMD Ryzen 5 3550h Firmware

AMD Ryzen 5 3580u Firmware

AMD Ryzen 3 3350u Firmware

AMD Ryzen 3 3300u Firmware

AMD Ryzen 7 4700g Firmware

AMD Ryzen 7 4700ge Firmware

AMD Ryzen 5 3400g Firmware

AMD Ryzen 5 4600ge Firmware

AMD Ryzen 5 4600g Firmware

AMD Ryzen 3 3200ge Firmware

AMD Ryzen 3 4300ge Firmware

AMD Ryzen 3 4300g Firmware

AMD Ryzen 5 7500f Firmware

AMD Ryzen Threadripper 3960x Firmware

AMD Ryzen Threadripper 3970x Firmware

AMD Ryzen Threadripper 3990x Firmware

AMD Ryzen Threadripper Pro 3945wx Firmware

AMD Ryzen Threadripper Pro 3955wx Firmware

AMD Ryzen Threadripper Pro 3975wx Firmware

AMD Ryzen Threadripper Pro 3995wx Firmware

AMD Ryzen Threadripper Pro 5945wx Firmware

AMD Ryzen Threadripper Pro 5955wx Firmware

AMD Ryzen Threadripper Pro 5965wx Firmware

AMD Ryzen Threadripper Pro 5975wx Firmware

AMD Ryzen Threadripper Pro 5995wx Firmware

AMD Ryzen 9 4900h Firmware

AMD Ryzen 9 4900hs Firmware

AMD Ryzen 7 4700u Firmware

AMD Ryzen 7 4800h Firmware

AMD Ryzen 7 4800hs Firmware

AMD Ryzen 7 4800u Firmware

AMD Ryzen 7 4980u Firmware

AMD Ryzen 5 4500u Firmware

AMD Ryzen 5 4600h Firmware

AMD Ryzen 5 4600hs Firmware

AMD Ryzen 5 4600u Firmware

AMD Ryzen 5 4680u Firmware

AMD Ryzen 3 4300u Firmware

AMD Ryzen 9 6900hs Firmware

AMD Ryzen 9 6900hx Firmware

AMD Ryzen 9 6980hs Firmware

AMD Ryzen 9 6980hx Firmware

AMD Ryzen 7 6800h Firmware

AMD Ryzen 7 6800hs Firmware

AMD Ryzen 7 6800u Firmware

AMD Ryzen 5 6600h Firmware

AMD Ryzen 5 6600hs Firmware

AMD Ryzen 5 6600u Firmware

AMD Ryzen 7 7735hs Firmware

AMD Ryzen 7 7735u Firmware

AMD Ryzen 7 7736u Firmware

AMD Ryzen 5 7535hs Firmware

AMD Ryzen 5 7535u Firmware

AMD Ryzen 3 7335u Firmware

AMD Ryzen 9 7945hx3d Firmware

AMD Ryzen 9 7945hx Firmware

AMD Ryzen 9 7845hx Firmware

AMD Ryzen 7 7745hx Firmware

AMD Ryzen 9 5900 Firmware

AMD Ryzen 9 5900x Firmware

AMD Ryzen 9 5950x Firmware

AMD Ryzen 7 5700 Firmware

AMD Ryzen 7 5700x Firmware

AMD Ryzen 7 5800 Firmware

AMD Ryzen 7 5800x3d Firmware

AMD Ryzen 7 5800x Firmware

AMD Ryzen 5 5500 Firmware

AMD Ryzen 5 5600 Firmware

AMD Ryzen 5 5600x3d Firmware

AMD Ryzen 5 5600x Firmware

AMD Ryzen 5 Pro 3350ge Firmware

AMD Ryzen 5 Pro 3350g Firmware

AMD Ryzen 5 Pro 3400ge Firmware

AMD Ryzen 5 Pro 3400g Firmware

AMD Ryzen 3 3200g Firmware

AMD Ryzen 3 Pro 3200ge Firmware

AMD Ryzen 3 Pro 3200g Firmware

AMD Ryzen 7 5700ge Firmware

AMD Ryzen 7 5700g Firmware

AMD Ryzen 5 5500gt Firmware

AMD Ryzen 5 5600ge Firmware

AMD Ryzen 5 5600g Firmware

AMD Ryzen 5 5600gt Firmware

AMD Ryzen 5300ge Firmware

AMD Ryzen 3 5300g Firmware

AMD Ryzen 9 5900hs Firmware

AMD Ryzen 9 5900hx Firmware

AMD Ryzen 9 5980hs Firmware

AMD Ryzen 9 5980hx Firmware

AMD Ryzen 7 5800h Firmware

AMD Ryzen 7 5800hs Firmware

AMD Ryzen 7 5800u Firmware

AMD Ryzen 7 5825u Firmware

AMD Ryzen 5 5500h Firmware

AMD Ryzen 5 5560u Firmware

AMD Ryzen 5 5600h Firmware

AMD Ryzen 5 5600hs Firmware

AMD Ryzen 5 5600u Firmware

AMD Ryzen 5 5625u Firmware

AMD Ryzen 3 5125c Firmware

AMD Ryzen 3 5400u Firmware

AMD Ryzen 3 5425c Firmware

AMD Athlon 3000g Firmware

AMD Athlon Gold 3150ge Firmware

AMD Athlon Gold Pro 3150ge Firmware

AMD Athlon Gold Pro 3150g Firmware

AMD Athlon Pro 300ge Firmware

Affected Versions

AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics:

Version PicassoPI-FP5 1.0.0.E is unaffected.

AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors:

Version ChagallWSPI-sWRX8 1.0.0.5 is unaffected.
Version CastlePeakWSPI-sWRX8 1.0.0.A is unaffected.

AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics:

Version ComboAM4v2 PI 1.2.0.8 is unaffected.

AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors:

Version ChagallWSPI-sWRX8 1.0.0.5 is unaffected.

AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics:

Version RenoirPI-FP6 1.0.0.A is unaffected.

AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics:

Version PicassoPI-FP5 1.0.0.E is unaffected.

AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics:

Version CezannePI-FP6 1.0.0.C is unaffected.

AMD Ryzen™ 3000 Series Desktop Processors:

Version ComboAM4V1 1.0.0.A is unaffected.
Version ComboAM4V2 1.2.0.9 is unaffected.

AMD Ryzen™ 2000 Mobile Processors:

Version ComboAM4v2 PI 1.2.0.8 is unaffected.
Version ComboAM4PI 1.0.0.9 is unaffected.

AMD Ryzen™ 4000 Series Desktop Processors:

Version ComboAM4v2 PI 1.2.0.8 is unaffected.

AMD Ryzen™ 5000 Series Desktop Processors:

Version ComboAM4v2 PI 1.2.0.8 is unaffected.

AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics:

Version RembrandtPI-FP7_1.0.0.5 is unaffected.

AMD Ryzen™ Embedded R1000 Series Processors:

Version EmbeddedPI-FP5_1.2.0.A is unaffected.

AMD Ryzen™ Embedded R2000 Series Processors:

Version EmbeddedR2KPI-FP5 1.0.0.2 is unaffected.

AMD Ryzen™ Embedded 5000 Series Processors:

Version EmbAM4PI 1.0.0.2 is unaffected.

AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge"):

Version EmbeddedPI-FP5_1.2.0.A is unaffected.

AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso"):

Version EmbeddedPI-FP5_1.2.0.A is unaffected.

AMD Ryzen™ Embedded V2000 Series Processor:

Version EmbeddedPI-FP6_1.0.0.8 is unaffected.

AMD Ryzen™ Embedded V3000 Series Processors:

Version EmbeddedPI-FP7r2_1002 is unaffected.

AMD Radeon™ RX 5000 Series Graphics Products:

Version AMD Software: Adrenalin Edition 22.5.2 (22.10.17.01) is unaffected.

AMD Radeon™ PRO W5000 Series Graphics Products:

Version AMD Software: PRO Edition 22.Q2 (22.10.20) is unaffected.

AMD Radeon™ RX 6000 Series Graphics Products:

Version AMD Software: Adrenalin Edition 22.5.2 (22.10.17.01) is unaffected.

AMD Radeon™ PRO W6000 Series Graphics Products:

Version AMD Software: PRO Edition 22.Q2 (22.10.20) is unaffected.

AMD MI-25 / 50:

Version No fix planned is unaffected.

AMD MI-100:

Version ROCm 6.4.2 is unaffected.

AMD Instinct™ MI250:

Version ROCm 7.0 is unaffected.

AMD Instinct™ MI210:

Version ROCm 7.0 is unaffected.

amd ryzen_3_3300x_firmware:

Before comboam4v2_1.2.0.a is unaffected.

amd ryzen_3_3300u_firmware:

Before picassopi-fp5_1.0.0.e is unaffected.

amd ryzen_3_pro_3200g_firmware:

Before comboam4v2_pi_1.2.0.8 is unaffected.

amd ryzen_5_7500f_firmware:

Before comboam5_1.0.8.0 is unaffected.

amd ryzen_threadripper_pro_3995wx_firmware:

Before castlepeakpi-sp3r3_1.0.0.8 is unaffected.

amd ryzen_threadripper_pro_3995wx_firmware:

Before castlepeakwspi-swrx8_1.0.0.a is unaffected.

amd ryzen_threadripper_pro_5995wx_firmware:

Before chagallwspi-swrx8_1.0.0.5 is unaffected.

amd ryzen_3_4300u_firmware:

Before renoirpi-fp6_1.0.0.a is unaffected.

amd ryzen_5_6600u_firmware:

Before rembrandtpi-fp7_1.0.0.5 is unaffected.

amd ryzen_3_7335u_firmware:

Before rembrandtpi-fp7_1.0.0.5 is unaffected.

amd ryzen_7_7745hx_firmware:

Before dragonrangefl1pi_1.0.0.3b is unaffected.

amd ryzen_5_5600x_firmware:

Before comboam4v2_pi_1.2.0.8 is unaffected.

amd ryzen_3_5300g_firmware:

Before cezannepi-fp6_1.0.0.c is unaffected.

amd ryzen_3_5425c_firmware:

Before cezannepi-fp6_1.0.0.c is unaffected.

amd athlon_pro_300ge_firmware:

Before picassopi-fp5_1.0.0.e is unaffected.

Exploit Probability

EPSS

0.10%

Percentile

26.59%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.