Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAMDCVELIST:CVE-2020-12890
HistoryDec 10, 2021 - 9:56 p.m.

CVE-2020-12890

2021-12-1021:56:55
AMD
www.cve.org
4
improper handling
system management mode
smm
amd agesa
privileged attacker
arbitrary code
operating system

AI Score

6.7

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Improper handling of pointers in the System Management Mode (SMM) handling code may allow for a privileged attacker with physical or administrative access to potentially manipulate the AMD Generic Encapsulated Software Architecture (AGESA) to execute arbitrary code undetected by the operating system.

CNA Affected

[
  {
    "product": "AMD Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "Processor  EPYC"
      }
    ]
  }
]

Related

hp 1
prion 1
nvd 1
cve 1
threatpost 1
hp
hp
HPSBHF03673 rev. 4 - AMD® SMM Callout Privilege Escalation
2020-07-01 00:00:00
prion
prion
Input validation
2021-12-10 22:15:00
nvd
nvd
CVE-2020-12890
2021-12-10 22:15:07
cve
cve
CVE-2020-12890
2021-12-10 22:15:07
threatpost
threatpost
AMD: Fixes For High-Severity SMM Callout Flaws Upcoming
2020-06-22 15:37:48

AI Score

6.7

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVELIST:CVE-2020-12890
hp1prion1nvd1cve1threatpost1