CVE-2022-23823
high-risk
Published 2022-06-15
A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure.
Do I need to act?
-
0.82% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10
Medium
NETWORK
/ LOW complexity
Affected Products (20)
Athlon X4 750 Firmware
Athlon X4 760K Firmware
Athlon X4 830 Firmware
Athlon X4 835 Firmware
Athlon X4 840 Firmware
Athlon X4 845 Firmware
Athlon X4 860K Firmware
Athlon X4 870K Firmware
Athlon X4 880K Firmware
Athlon X4 940 Firmware
Athlon X4 950 Firmware
Athlon X4 970 Firmware
Ryzen Threadripper Pro 3795Wx Firmware
Affected Vendors
References (2)
59
/ 100
high-risk
Severity
24/34 · High
Exploitability
3/34 · Minimal
Exposure
32/34 · Critical