CVE-2023-20592

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-20592

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-20592.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-20592

Downstream

BELL-CVE-2023-20592

DEBIAN-CVE-2023-20592

RHSA-2024:0753

RHSA-2024:0978

RHSA-2024:0979

RHSA-2024:1112

RHSA-2024:3178

RHSA-2024:4575

RLSA-2024:3178

SUSE-SU-2023:4654-1

SUSE-SU-2023:4655-1

SUSE-SU-2023:4660-1

SUSE-SU-2023:4664-1

SUSE-SU-2023:4665-1

SUSE-SU-2024:2376-1

UBUNTU-CVE-2023-20592

openSUSE-SU-2024:13475-1

openSUSE-SU-2025:14772-1

Related

Published

2023-11-14T19:15:16Z

Modified

2026-02-04T03:38:50.834024Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3005

Affected packages