CVE-2020-12966 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AMD	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 15%

Vendor	Product	Version
amd	epyc_7001_firmware	-
amd	epyc_7002_firmware	-
amd	epyc_7232p_firmware	-
amd	epyc_7251_firmware	-
amd	epyc_7252_firmware	-
amd	epyc_7261_firmware	-
amd	epyc_7262_firmware	-
amd	epyc_7272_firmware	-
amd	epyc_7281_firmware	-
amd	epyc_7282_firmware	-
amd	epyc_7301_firmware	-
amd	epyc_7302_firmware	-
amd	epyc_7302p_firmware	-
amd	epyc_7351_firmware	-
amd	epyc_7351p_firmware	-
amd	epyc_7352_firmware	-
amd	epyc_7371_firmware	-
amd	epyc_7401_firmware	-
amd	epyc_7401p_firmware	-
amd	epyc_7402_firmware	-
amd	epyc_7402p_firmware	-
amd	epyc_7451_firmware	-
amd	epyc_7452_firmware	-
amd	epyc_7501_firmware	-
amd	epyc_7502_firmware	-
amd	epyc_7502p_firmware	-
amd	epyc_7532_firmware	-
amd	epyc_7542_firmware	-
amd	epyc_7551_firmware	-
amd	epyc_7551p_firmware	-
amd	epyc_7552_firmware	-
amd	epyc_7601_firmware	-
amd	epyc_7642_firmware	-
amd	epyc_7662_firmware	-
amd	epyc_7702_firmware	-
amd	epyc_7702p_firmware	-
amd	epyc_7742_firmware	-
amd	epyc_7f32_firmware	-
amd	epyc_7f52_firmware	-
amd	epyc_7f72_firmware	-
amd	epyc_7h12_firmware	-
amd	epyc_embedded_3101_firmware	-
amd	epyc_embedded_3151_firmware	-
amd	epyc_embedded_3201_firmware	-
amd	epyc_embedded_3251_firmware	-
amd	epyc_embedded_3255_firmware	-
amd	epyc_embedded_3351_firmware	-
amd	epyc_embedded_3451_firmware	-
amd	epyc_embedded_7232p_firmware	-
amd	epyc_embedded_7251_firmware	-
amd	epyc_embedded_7252_firmware	-
amd	epyc_embedded_7261_firmware	-
amd	epyc_embedded_7262_firmware	-
amd	epyc_embedded_7272_firmware	-
amd	epyc_embedded_7281_firmware	-
amd	epyc_embedded_7282_firmware	-
amd	epyc_embedded_7301_firmware	-
amd	epyc_embedded_7302_firmware	-
amd	epyc_embedded_7302p_firmware	-
amd	epyc_embedded_7351_firmware	-
amd	epyc_embedded_7352_firmware	-
amd	epyc_embedded_735p_firmware	-
amd	epyc_embedded_7371_firmware	-
amd	epyc_embedded_7401_firmware	-
amd	epyc_embedded_7402_firmware	-
amd	epyc_embedded_7402p_firmware	-
amd	epyc_embedded_740p_firmware	-
amd	epyc_embedded_7451_firmware	-
amd	epyc_embedded_7452_firmware	-
amd	epyc_embedded_7501_firmware	-
amd	epyc_embedded_7502_firmware	-
amd	epyc_embedded_7502p_firmware	-
amd	epyc_embedded_7532_firmware	-
amd	epyc_embedded_7542_firmware	-
amd	epyc_embedded_7551_firmware	-
amd	epyc_embedded_7552_firmware	-
amd	epyc_embedded_755p_firmware	-
amd	epyc_embedded_7601_firmware	-
amd	epyc_embedded_7642_firmware	-
amd	epyc_embedded_7662_firmware	-
amd	epyc_embedded_7702_firmware	-
amd	epyc_embedded_7702p_firmware	-
amd	epyc_embedded_7742_firmware	-
amd	epyc_embedded_7f32_firmware	-
amd	epyc_embedded_7f52_firmware	-
amd	epyc_embedded_7f72_firmware	-
amd	epyc_embedded_7h12_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References

http://www.openwall.com/lists/oss-security/2022/08/08/6

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1013

http://www.openwall.com/lists/oss-security/2022/08/08/6

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1013