{"cve":{"cve_id":"CVE-2023-20597","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00171,"epss_percentile":0.06679,"epss_as_of":"2026-06-23","description":"Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.","published_at":"2023-09-20T17:32:18.969000Z","last_modified_at":null,"cvss_v3_score":null,"cvss_v3_vector":null,"cvss_v3_severity":null,"cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":false,"ssvc_technical_impact":"partial","cwes":["CWE-824"],"nvd_references":["https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4007"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-29T01:24:59.365230Z"},"effective_severity":null,"badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":null,"metrics":[]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-epyc-embedded-7003","product_name":"AMD EPYC™ Embedded 7003","version_start":"EmbMilanPI-SP3 1.0.0.6","version_start_inclusive":true,"version_end":"EmbMilanPI-SP3 1.0.0.6","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-epyc-embedded-7003:EmbMilanPI-SP3 1.0.0.6:EmbMilanPI-SP3 1.0.0.6"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-ryzen-embedded-5000","product_name":"AMD Ryzen™ Embedded 5000","version_start":"EmbAM4PI 1.0.0.2","version_start_inclusive":true,"version_end":"EmbAM4PI 1.0.0.2","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-ryzen-embedded-5000:EmbAM4PI 1.0.0.2:EmbAM4PI 1.0.0.2"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-ryzen-embedded-v2000","product_name":"AMD Ryzen™Embedded V2000","version_start":"EmbeddedPI-FP6 1.0.0.8","version_start_inclusive":true,"version_end":"EmbeddedPI-FP6 1.0.0.8","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-ryzen-embedded-v2000:EmbeddedPI-FP6 1.0.0.8:EmbeddedPI-FP6 1.0.0.8"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-ryzen-embedded-v3000","product_name":"AMD Ryzen™Embedded V3000","version_start":"EmbeddedPI-FP7r2    1.0.0.4","version_start_inclusive":true,"version_end":"EmbeddedPI-FP7r2    1.0.0.4","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-ryzen-embedded-v3000:EmbeddedPI-FP7r2    1.0.0.4:EmbeddedPI-FP7r2    1.0.0.4"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-3000-series-desktop-processors-matisse","product_name":"Ryzen™ 3000 Series Desktop Processors “Matisse”","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-3000-series-desktop-processors-matisse:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-5000-series-desktop-processors-vermeer","product_name":"Ryzen™ 5000 Series Desktop Processors “Vermeer”","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-5000-series-desktop-processors-vermeer:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-5000-series-desktop-processor-with-radeon-graphics-cezanne","product_name":"Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics  “Cezanne”","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-5000-series-desktop-processor-with-radeon-graphics-cezanne:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-5000-series-mobile-processors-with-radeon-graphics-barcelo","product_name":"Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics \"Barcelo\"","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-5000-series-mobile-processors-with-radeon-graphics-barcelo:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-6000-series-mobile-processors-with-radeon-graphics-rembrandt","product_name":"Ryzen™ 6000 Series Mobile Processors with Radeon™ Graphics \"Rembrandt\"","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-6000-series-mobile-processors-with-radeon-graphics-rembrandt:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-7030-series-mobile-processors-with-radeon-graphics-barcelo-r","product_name":"Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R”","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-7030-series-mobile-processors-with-radeon-graphics-barcelo-r:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-7035-series-mobile-processors-with-radeon-graphics-rembrandt-r","product_name":"Ryzen™ 7035 Series Mobile Processors with Radeon™ Graphics \"Rembrandt-R\"","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-7035-series-mobile-processors-with-radeon-graphics-rembrandt-r:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-threadripper-3000-series-processors-castle-peak-hedt","product_name":"Ryzen™ Threadripper™ 3000 Series Processors “Castle Peak” HEDT","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-threadripper-3000-series-processors-castle-peak-hedt:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-threadripper-pro-3000wx-series-processors-chagall-ws-sp3","product_name":"Ryzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WS SP3","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-threadripper-pro-3000wx-series-processors-chagall-ws-sp3:various:various"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"ryzen-threadripper-pro-processors-castle-peak-ws-sp3","product_name":"Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3","version_start":"various","version_start_inclusive":true,"version_end":"various","version_end_inclusive":true,"cpe23_uri":"cve5:amd:ryzen-threadripper-pro-processors-castle-peak-ws-sp3:various:various"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4007","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2023-09-20T17:32:18.969000Z","label":"CVE published","source":null},{"type":"ssvc_changed","at":"2026-06-29T01:24:59.365230Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:24:59.365230Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:24:59.365230Z","label":"SSVC decision revised","source":"vulnrichment"}]}