{"containers": {"cna": {"affected": [{"product": "Ryzen\u2122 Series ", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}, {"product": " Athlon\u2122 Series ", "vendor": "AMD", "versions": [{"status": "affected", "version": "various"}]}], "datePublic": "2022-05-10T00:00:00", "descriptions": [{"lang": "en", "value": "Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution."}], "problemTypes": [{"descriptions": [{"description": "tbd", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-05-11T15:27:11", "orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027"}], "source": {"advisory": "AMD-SB-1027 ", "discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@amd.com", "DATE_PUBLIC": "2022-05-10T20:00:00.000Z", "ID": "CVE-2020-12944", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Ryzen\u2122 Series ", "version": {"version_data": [{"version_affected": "=", "version_value": "various"}]}}, {"product_name": " Athlon\u2122 Series ", "version": {"version_data": [{"version_affected": "=", "version_value": "various"}]}}]}, "vendor_name": "AMD"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution."}]}, "generator": {"engine": "Vulnogram 0.0.9"}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "tbd"}]}]}, "references": {"reference_data": [{"name": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027", "refsource": "MISC", "url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027"}]}, "source": {"advisory": "AMD-SB-1027 ", "discovery": "UNKNOWN"}}}}, "cveMetadata": {"assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "assignerShortName": "AMD", "cveId": "CVE-2020-12944", "datePublished": "2022-05-10T00:00:00", "dateReserved": "2020-05-15T00:00:00", "dateUpdated": "2022-05-11T15:27:11", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7601_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1C87955A-0D87-4033-9471-91959DB33F33", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7601:-:*:*:*:*:*:*:*", "matchCriteriaId": "168076CD-1E6D-4328-AB59-4C1A90735AC4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7551p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "596D8BCF-DA78-4B50-BF74-92D2D365D84A", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7551p:-:*:*:*:*:*:*:*", "matchCriteriaId": "01BE5D42-1C62-4381-89E0-8F3264F696EC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7551_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B6808726-DA60-4E60-96EE-363F37400C66", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7551:-:*:*:*:*:*:*:*", "matchCriteriaId": "1AAB403A-5A36-4DC3-A187-99127CF77BA7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7501_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8517E293-1543-4AA4-9861-A0D71A6C0482", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7501:-:*:*:*:*:*:*:*", "matchCriteriaId": "4E8BAB73-6F45-49AB-8F00-49A488006F3E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7451_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EA119723-3E05-4E11-BAB9-1F429058BBC0", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7451:-:*:*:*:*:*:*:*", "matchCriteriaId": "51C8CF00-8FC8-4206-9028-6F104699DE76", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7401_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "34F6214E-3284-4354-BAC1-0D8139BB8CCD", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7401:-:*:*:*:*:*:*:*", "matchCriteriaId": "C05F1EF0-3576-4D47-8704-36E9FAB1D432", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7371_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8ED025DE-E791-4801-B610-9AADDEC05A0A", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7371:-:*:*:*:*:*:*:*", "matchCriteriaId": "FA7576CB-A818-47A1-9A0D-6B8FD105FF08", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7351p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "45E02BA5-5765-4F88-9437-4859C5642B8E", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7351p:-:*:*:*:*:*:*:*", "matchCriteriaId": "9BB78361-9AAD-44BD-8B30-65715FEA4C06", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7351_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "183E251A-D6B9-4099-B6DA-68807AE75F31", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7351:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A5FC951-9FAD-45B4-B7CF-D1A9482507F5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7301_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A45CDE52-D368-440D-BED5-4CEF5DBD1D6E", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7301:-:*:*:*:*:*:*:*", "matchCriteriaId": "F65FC5B9-0803-4D7F-8EF6-7B6681418596", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7281_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1FCD6F2B-1BD9-4B9F-9C84-7A6AF7973313", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7281:-:*:*:*:*:*:*:*", "matchCriteriaId": "805B4FEA-CFB2-429C-818B-9277B6D546C3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7261_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B2E43B1A-128E-405E-8570-C21581AEE166", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7261:-:*:*:*:*:*:*:*", "matchCriteriaId": "71ED05E6-8E69-41B9-9A36-CCE2D59A2603", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7251_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "02C77DA8-878C-46F4-8DE9-7575D70771A8", "versionEndExcluding": "naplespi-sp3_1.0.0.g", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7251:-:*:*:*:*:*:*:*", "matchCriteriaId": "565383C4-F690-4E3B-8A6A-B7D4ACCFAA05", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7f72_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "648F6B48-DD12-4454-9195-9EA700289E17", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7f72:-:*:*:*:*:*:*:*", "matchCriteriaId": "07B3C659-C31A-4F82-9587-9F8A943F637D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7f52_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "137A3BE7-9131-4741-A675-AA2325F4828E", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7f52:-:*:*:*:*:*:*:*", "matchCriteriaId": "87543FB4-658A-4300-9DC9-836AC1D4BCFB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7f32_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2E976EAC-4465-4B59-B753-2EF177B1AAAD", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7f32:-:*:*:*:*:*:*:*", "matchCriteriaId": "E25652AB-E243-4C40-BE12-AB53AF52CD61", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7h12_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4036E501-877E-4A70-AF00-EDA0AA0A4D88", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7h12:-:*:*:*:*:*:*:*", "matchCriteriaId": "89FAAD8C-6DD1-408D-849B-0CE707321B13", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7742_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "32190150-8A13-465C-9507-652D6EF1668B", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7742:-:*:*:*:*:*:*:*", "matchCriteriaId": "88F4A126-B4A6-480A-9DD7-7F68714DFB49", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7702_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7132A01F-5DAA-4543-9680-2B7F66329F90", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7702:-:*:*:*:*:*:*:*", "matchCriteriaId": "8AC99346-DBF1-4060-8E6B-35D315944ADA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7702p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "495CC88D-C7EC-4229-AB47-1DA2500C7676", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7702p:-:*:*:*:*:*:*:*", "matchCriteriaId": "72C86198-0BD4-42E1-974B-70A49F82C411", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7662_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E9580EB1-B700-40C9-92F7-0C7F0A31321D", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7662:-:*:*:*:*:*:*:*", "matchCriteriaId": "3E8C6528-9100-41D2-88A2-FFEABAB8F86A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7642_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A8BF36F9-F3D2-47D8-9AC4-598CEAFE8DB3", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7642:-:*:*:*:*:*:*:*", "matchCriteriaId": "1EDF8A1E-B259-43D0-A56C-8C2BB688A32C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7552_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BBAC3939-49D7-4338-A138-17987C0EB577", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7552:-:*:*:*:*:*:*:*", "matchCriteriaId": "7A6C7497-1B63-490F-B8EA-D9F3CB790952", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7542_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "08A5A80E-1468-4F29-BD8E-65E8B1998B17", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7542:-:*:*:*:*:*:*:*", "matchCriteriaId": "BC94B03B-A7FE-47AE-969D-FFEF278A7A9B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7532_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "798F2DE0-23D0-47A7-9187-4C9AF5F1A4BE", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7532:-:*:*:*:*:*:*:*", "matchCriteriaId": "1EDABE45-F529-453C-92DC-BF7747CEEC0E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7502_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B2F07874-0B84-4321-B5A2-BD655F001FEF", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7502:-:*:*:*:*:*:*:*", "matchCriteriaId": "49BBC687-5C3C-4843-A028-B8BE29D1E302", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7502p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "58DA87AB-FA43-4C46-96DC-B6A117722A8E", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7502p:-:*:*:*:*:*:*:*", "matchCriteriaId": "563708A3-7C51-4693-B02D-9A25A639FE42", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7452_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B6E4577E-D638-4E6F-A4DA-2F1EBDF1BB7C", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7452:-:*:*:*:*:*:*:*", "matchCriteriaId": "68ACF30E-62DD-4217-B7F0-4A0FFF47E8EF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7402_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5EE9574E-39B8-4FEE-B560-20BA5019F4CE", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7402:-:*:*:*:*:*:*:*", "matchCriteriaId": "430C9955-0090-4166-8E90-D81C2AA7DE0D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7402p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3A1964EC-9D00-4399-8C9C-469EB7195039", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7402p:-:*:*:*:*:*:*:*", "matchCriteriaId": "92EBDDBF-37C2-4D09-B744-F78169B2C1C3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7352_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "289C6D4D-8BC6-4DE3-8355-13AC1940F9EE", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7352:-:*:*:*:*:*:*:*", "matchCriteriaId": "A1540CCD-1ED8-4B4E-AD43-7DE2689D9A21", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7302_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EA3612A0-938A-4148-9008-A4267D7C5B98", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7302:-:*:*:*:*:*:*:*", "matchCriteriaId": "0F7CB05E-C4F4-481F-AFB0-9288EBE6DB62", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7302p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F77A628F-9D88-4868-996D-D44AAD8E1D85", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7302p:-:*:*:*:*:*:*:*", "matchCriteriaId": "8A2E0AC0-8BDE-49F8-B067-DB03037921DD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7282_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "483A580F-1308-4898-B995-2D5DFB445205", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7282:-:*:*:*:*:*:*:*", "matchCriteriaId": "26FC5683-F612-4586-8BA3-FB1F66D8868B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7272_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "85EF80C4-99FA-4662-867A-9E4B766D3CB9", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7272:-:*:*:*:*:*:*:*", "matchCriteriaId": "8F187412-26C2-4D8C-9199-D7CCF49D6520", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7262_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "145D27E6-850A-49AA-AAB3-B432151A41D1", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7262:-:*:*:*:*:*:*:*", "matchCriteriaId": "4FBBFDD3-A85D-43A3-AD67-D69E91C633B6", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7252_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "57089BAE-679F-473F-9737-E7122BFC48F2", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7252:-:*:*:*:*:*:*:*", "matchCriteriaId": "9B816918-6CCF-4010-AA16-7BF8A93AD7D1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7232p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0DBC6D60-29B4-4A9C-B991-D8968A218F20", "versionEndExcluding": "romepi-sp3_1.0.0.c", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7232p:-:*:*:*:*:*:*:*", "matchCriteriaId": "16D55BEF-AFC8-45DC-9401-5DEF374E16C5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "89BE6D92-D0B1-4092-ACB7-DE987FC026B5", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*", "matchCriteriaId": "4F900BDD-F094-41A6-9A23-31F53DBA95D4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5BB074EC-A5CC-4E6A-8CDF-80B0E04D70B1", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*", "matchCriteriaId": "2299ED50-B4D2-4BB3-AD87-56D552B84AE1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD918198-F9C6-41B3-A338-F64DEBCC017C", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*", "matchCriteriaId": "4D698D3E-BB05-4C65-90F4-8DAE275CD6A4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A9B05DF1-54B5-4C8D-ABEB-489D0ED90FFC", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*", "matchCriteriaId": "A7DFCB62-6CDF-4AD2-9265-1887E5780CA5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FA78545E-FDD6-49DA-8DDD-F1FB504EC59A", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*", "matchCriteriaId": "98E1D79D-0CB0-4FD9-8A82-27CDFBFE07B2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1DD8F2DC-5263-4FDF-B13A-70A4D15361A0", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*", "matchCriteriaId": "EBF0AFED-588A-4EFB-8C90-9280BC3A6720", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8F375A23-E6B5-4998-960D-764AE7F2E202", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*", "matchCriteriaId": "77A0A47B-74A1-4731-92A8-BC10FFE58ECF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "30CDB8F3-A757-449B-A66E-3F0E443E6001", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*", "matchCriteriaId": "52544912-FAA3-4025-A5FD-151B21CEC53B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0655082D-02E4-4708-B749-F035E87A3CCA", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*", "matchCriteriaId": "F8264DF4-47B4-4716-AE89-44AFA870D385", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7596F9F6-7216-4A6C-A1A4-02F1719A5506", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*", "matchCriteriaId": "241E39FF-FE66-444C-A4C2-3D28C45341BE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "01FE866B-C654-4A7A-B65A-A3BEFA896D87", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*", "matchCriteriaId": "02D08121-DC57-47D7-8214-23A209F0AF08", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1271AB1A-2AD6-4837-801F-53B25724AD06", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*", "matchCriteriaId": "8E2B13CA-72F4-4CF6-9E12-62E6E9056A14", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC530984-C23F-4C2A-B07A-689C69C08EC4", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*", "matchCriteriaId": "4C474537-3006-41BA-8C3D-5C370E3ACECD", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "85E3C6E9-D601-4BC0-99B8-118D1CCAE1D4", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1766FF1-77A9-4293-B826-F6A8FBD7AFBF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B09197BA-5C2D-4616-BADF-A6D2FE9FB044", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*", "matchCriteriaId": "678C5F58-8AE9-46FF-8F01-4CF394C87A2C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AA050CB2-9587-4534-A766-D434ED2BA2BA", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*", "matchCriteriaId": "71B9C24B-2C10-4826-A91B-E1C60665FBBE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C951EB53-A85E-4AC3-8076-167AD244B605", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*", "matchCriteriaId": "9000686A-DC2B-4561-9C32-E90890EB2EBA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C793CE0D-A5D2-4279-8A2E-056C0E34DCD3", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*", "matchCriteriaId": "B02B61B7-7DD3-4164-8D32-EB961E981BC9", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2C7CAA93-4553-4EE7-8DED-4E607F62DAF8", "versionEndExcluding": "milanpi-sp3_1.0.0.4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*", "matchCriteriaId": "7F98FF1A-3A2B-4CED-AEA2-9C4F2AC2D8C1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution."}, {"lang": "es", "value": "Una validaci\u00f3n insuficiente de la longitud de la imagen de la BIOS por parte de ASP Firmware podr\u00eda conducir a la ejecuci\u00f3n de c\u00f3digo arbitrario"}], "id": "CVE-2020-12944", "lastModified": "2022-10-06T15:45:33.763", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-11-16T19:15:07.317", "references": [{"source": "psirt@amd.com", "tags": ["Vendor Advisory"], "url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027"}], "sourceIdentifier": "psirt@amd.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}