Vulnerability Description
Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amd | Athlon Silver 3050U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Athlon Silver 3050U | - |
| Amd | Athlon Gold 3150U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Athlon Gold 3150U | - |
| Amd | Ryzen 7 3780U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 7 3780U | - |
| Amd | Ryzen 7 3750H Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 7 3750H | - |
| Amd | Ryzen 7 Pro 3700U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 7 Pro 3700U | - |
| Amd | Ryzen 7 3700U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 7 3700U | - |
| Amd | Ryzen 5 3580U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 5 3580U | - |
| Amd | Ryzen 5 3550H Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 5 3550H | - |
| Amd | Ryzen 5 3500U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 5 3500U | - |
| Amd | Ryzen 3 3300U Firmware | < picassopi-fp5_1.0.0.e |
| Amd | Ryzen 3 3300U | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2022-23815?
CVE-2022-23815 is a vulnerability with a CVSS score of 7.5 (HIGH). Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution.
How severe is CVE-2022-23815?
CVE-2022-23815 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-23815?
Check the references section above for vendor advisories and patch information. Affected products include: Amd Athlon Silver 3050U Firmware, Amd Athlon Silver 3050U, Amd Athlon Gold 3150U Firmware, Amd Athlon Gold 3150U, Amd Ryzen 7 3780U Firmware.