nvd-json-data-feeds/CVE-2023/CVE-2023-205xx/CVE-2023-20508.json

{
  "id": "CVE-2023-20508",
  "sourceIdentifier": "psirt@amd.com",
  "published": "2025-02-12T00:15:07.850",
  "lastModified": "2025-02-12T00:15:07.850",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability."
    },
    {
      "lang": "es",
      "value": "Un control de acceso inadecuado en el ASP podr\u00eda permitir que un atacante privilegiado realice una escritura fuera de los l\u00edmites en una ubicaci\u00f3n de memoria no controlada por el atacante, lo que podr\u00eda provocar una p\u00e9rdida de confidencialidad, integridad o disponibilidad."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "psirt@amd.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L",
          "baseScore": 5.0,
          "baseSeverity": "MEDIUM",
          "attackVector": "LOCAL",
          "attackComplexity": "HIGH",
          "privilegesRequired": "HIGH",
          "userInteraction": "NONE",
          "scope": "CHANGED",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.7
      }
    ]
  },
  "weaknesses": [
    {
      "source": "psirt@amd.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-1284"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html",
      "source": "psirt@amd.com"
    }
  ]
}