AMD Zen2 CPU Microarchitectural Info Leak
CVE-2023-20593 Published on July 24, 2023

An issue in Zen 2 CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

Vendor Advisory NVD

Weakness Type

Generation of Error Message Containing Sensitive Information

The software generates an error message that includes sensitive information about its environment, users, or associated data.

Products Associated with CVE-2023-20593

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-20593 are published in these products:

Amazon Aws

Citrix Xen Xen

Debian Linux

Canonical Ubuntu Linux

Google Chrome

Affected Versions

AMD Ryzen™ 3000 Series Desktop Processors “Matisse” AM4:

Version various is affected.

AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” AM4:

Version various is affected.

3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDT:

Version various is affected.

AMD Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3:

Version various is affected.

AMD Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Lucienne”:

Version various is affected.

AMD Ryzen™ 4000 Series Mobile processors with Radeon™ Graphics “Renoir”:

Version various is affected.

AMD Ryzen™ 7020 Series processors “Mendocino” FT6:

Version various is affected.

2nd Gen AMD EPYC™ Processors:

Version various is affected.

Exploit Probability

EPSS

5.88%

Percentile

90.58%