CVE-2023-20599
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2025-06-10

Last updated on: 2025-11-21

Assigner: Advanced Micro Devices Inc.

Description
Improper register access control in ASP may allow a privileged attacker to perform unauthorized access to ASP’s Crypto Co-Processor (CCP) registers from x86 resulting in potential loss of control of cryptographic key pointer/index leading to loss of integrity or confidentiality.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-06-10
Last Modified
2025-11-21
Generated
2026-05-07
AI Q&A
2025-06-11
EPSS Evaluated
2026-05-05
NVD
CVE-2023-20599
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1262 The product uses memory-mapped I/O registers that act as an interface to hardware functionality from software, but there is improper access control to those registers.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability involves improper register access control in ASP, which may allow a privileged attacker on an x86 system to access ASP's Crypto Co-Processor (CCP) registers without authorization. This unauthorized access can lead to loss of control over cryptographic key pointers or indexes.


How can this vulnerability impact me? :

The vulnerability can lead to loss of integrity or confidentiality by allowing an attacker to manipulate cryptographic key pointers or indexes, potentially compromising cryptographic operations and sensitive data protected by those keys.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart