Vulnerability Name:

CVE-2020-12965 (CCN-207168)

Assigned:2020-05-15
Published:2021-08-10
Updated:2022-02-10
Summary:When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-74
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2020-12965

Source: XF
Type: UNKNOWN
amd-cve202012965-info-disc(207168)

Source: CCN
Type: Lenovo Security Advisory: LEN-63220
AMD Transient Execution of Non-Canonical Accesses

Source: CCN
Type: AMD Security Advisory: AMD-SB-1010
Transient Execution of Non-canonical Accesses

Source: MISC
Type: Mitigation, Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1010

Vulnerable Configuration:Configuration 1:
  • cpe:/o:amd:ryzen_pro_5650g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5650g:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:amd:ryzen_pro_5650ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5650ge:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:amd:ryzen_pro_5750g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5750g:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:amd:ryzen_pro_5750ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5750ge:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:amd:ryzen_pro_5350g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5350g:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:amd:ryzen_pro_5350ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_5350ge:-:*:*:*:*:*:*:*

    • Configuration 7:
  • cpe:/o:amd:ryzen_pro_4750g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4750g:-:*:*:*:*:*:*:*

    • Configuration 8:
  • cpe:/o:amd:ryzen_pro_4750ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4750ge:-:*:*:*:*:*:*:*

    • Configuration 9:
  • cpe:/o:amd:ryzen_pro_4650g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4650g:-:*:*:*:*:*:*:*

    • Configuration 10:
  • cpe:/o:amd:ryzen_pro_4650ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4650ge:-:*:*:*:*:*:*:*

    • Configuration 11:
  • cpe:/o:amd:ryzen_pro_4350g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4350g:-:*:*:*:*:*:*:*

    • Configuration 12:
  • cpe:/o:amd:ryzen_pro_4350ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_4350ge:-:*:*:*:*:*:*:*

    • Configuration 13:
  • cpe:/o:amd:ryzen_pro_3900_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3900:-:*:*:*:*:*:*:*

    • Configuration 14:
  • cpe:/o:amd:ryzen_pro_3700_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3700:-:*:*:*:*:*:*:*

    • Configuration 15:
  • cpe:/o:amd:ryzen_pro_3600_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3600:-:*:*:*:*:*:*:*

    • Configuration 16:
  • cpe:/o:amd:ryzen_pro_3400g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3400g:-:*:*:*:*:*:*:*

    • Configuration 17:
  • cpe:/o:amd:ryzen_pro_3400ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3400ge:-:*:*:*:*:*:*:*

    • Configuration 18:
  • cpe:/o:amd:ryzen_pro_3350g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3350g:-:*:*:*:*:*:*:*

    • Configuration 19:
  • cpe:/o:amd:ryzen_pro_3200g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3200g:-:*:*:*:*:*:*:*

    • Configuration 20:
  • cpe:/o:amd:ryzen_pro_3200ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_3200ge:-:*:*:*:*:*:*:*

    • Configuration 21:
  • cpe:/o:amd:ryzen_pro_2400g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_2400g:-:*:*:*:*:*:*:*

    • Configuration 22:
  • cpe:/o:amd:ryzen_pro_2400ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_2400ge:-:*:*:*:*:*:*:*

    • Configuration 23:
  • cpe:/o:amd:ryzen_pro_2200g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_2200g:-:*:*:*:*:*:*:*

    • Configuration 24:
  • cpe:/o:amd:ryzen_pro_2200ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_pro_2200ge:-:*:*:*:*:*:*:*

    • Configuration 25:
  • cpe:/o:amd:ryzen_threadripper_pro_3995wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_pro_3995wx:-:*:*:*:*:*:*:*

    • Configuration 26:
  • cpe:/o:amd:ryzen_threadripper_pro_3975wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_pro_3975wx:-:*:*:*:*:*:*:*

    • Configuration 27:
  • cpe:/o:amd:ryzen_threadripper_pro_3955wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_pro_3955wx:-:*:*:*:*:*:*:*

    • Configuration 28:
  • cpe:/o:amd:ryzen_threadripper_pro_3945wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_pro_3945wx:-:*:*:*:*:*:*:*

    • Configuration 29:
  • cpe:/o:amd:athlon_gold_pro_3150g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_gold_pro_3150g:-:*:*:*:*:*:*:*

    • Configuration 30:
  • cpe:/o:amd:athlon_gold_pro_3150ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_gold_pro_3150ge:-:*:*:*:*:*:*:*

    • Configuration 31:
  • cpe:/o:amd:athlon_silver_pro_3125ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_silver_pro_3125ge:-:*:*:*:*:*:*:*

    • Configuration 32:
  • cpe:/o:amd:athlon_pro_300ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_pro_300ge:-:*:*:*:*:*:*:*

    • Configuration 33:
  • cpe:/o:amd:athlon_pro_200ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_pro_200ge:-:*:*:*:*:*:*:*

    • Configuration 34:
  • cpe:/o:amd:ryzen_threadripper_3990x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_3990x:-:*:*:*:*:*:*:*

    • Configuration 35:
  • cpe:/o:amd:ryzen_threadripper_3970x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_3970x:-:*:*:*:*:*:*:*

    • Configuration 36:
  • cpe:/o:amd:ryzen_threadripper_3960x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_3960x:-:*:*:*:*:*:*:*

    • Configuration 37:
  • cpe:/o:amd:ryzen_threadripper_2990wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_2990wx:-:*:*:*:*:*:*:*

    • Configuration 38:
  • cpe:/o:amd:ryzen_threadripper_2970wx_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_2970wx:-:*:*:*:*:*:*:*

    • Configuration 39:
  • cpe:/o:amd:ryzen_threadripper_2950x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_2950x:-:*:*:*:*:*:*:*

    • Configuration 40:
  • cpe:/o:amd:ryzen_threadripper_2920x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_2920x:-:*:*:*:*:*:*:*

    • Configuration 41:
  • cpe:/o:amd:ryzen_threadripper_1950x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_1950x:-:*:*:*:*:*:*:*

    • Configuration 42:
  • cpe:/o:amd:ryzen_threadripper_1920x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_1920x:-:*:*:*:*:*:*:*

    • Configuration 43:
  • cpe:/o:amd:ryzen_threadripper_1920x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_1920x:-:*:*:*:*:*:*:*

    • Configuration 44:
  • cpe:/o:amd:ryzen_threadripper_1900x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_threadripper_1900x:-:*:*:*:*:*:*:*

    • Configuration 45:
  • cpe:/o:amd:ryzen_5950x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5950x:-:*:*:*:*:*:*:*

    • Configuration 46:
  • cpe:/o:amd:ryzen_5800x3d_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5800x3d:-:*:*:*:*:*:*:*

    • Configuration 47:
  • cpe:/o:amd:ryzen_5900x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5900x:-:*:*:*:*:*:*:*

    • Configuration 48:
  • cpe:/o:amd:ryzen_5800x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5800x:-:*:*:*:*:*:*:*

    • Configuration 49:
  • cpe:/o:amd:ryzen_5600x_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5600x:-:*:*:*:*:*:*:*

    • Configuration 50:
  • cpe:/o:amd:ryzen_5700g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5700g:-:*:*:*:*:*:*:*

    • Configuration 51:
  • cpe:/o:amd:ryzen_5600g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5600g:-:*:*:*:*:*:*:*

    • Configuration 52:
  • cpe:/o:amd:ryzen_5700g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5700g:-:*:*:*:*:*:*:*

    • Configuration 53:
  • cpe:/o:amd:ryzen_5700ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5700ge:-:*:*:*:*:*:*:*

    • Configuration 54:
  • cpe:/o:amd:ryzen_5600g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5600g:-:*:*:*:*:*:*:*

    • Configuration 55:
  • cpe:/o:amd:ryzen_5600ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5600ge:-:*:*:*:*:*:*:*

    • Configuration 56:
  • cpe:/o:amd:ryzen_5300g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5300g:-:*:*:*:*:*:*:*

    • Configuration 57:
  • cpe:/o:amd:ryzen_5300ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_5300ge:-:*:*:*:*:*:*:*

    • Configuration 58:
  • cpe:/o:amd:ryzen_4700g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4700g:-:*:*:*:*:*:*:*

    • Configuration 59:
  • cpe:/o:amd:ryzen_4600g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4600g:-:*:*:*:*:*:*:*

    • Configuration 60:
  • cpe:/o:amd:ryzen_4300g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4300g:-:*:*:*:*:*:*:*

    • Configuration 61:
  • cpe:/o:amd:ryzen_4700ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4700ge:-:*:*:*:*:*:*:*

    • Configuration 62:
  • cpe:/o:amd:ryzen_4600ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4600ge:-:*:*:*:*:*:*:*

    • Configuration 63:
  • cpe:/o:amd:ryzen_4300ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:ryzen_4300ge:-:*:*:*:*:*:*:*

    • Configuration 64:
  • cpe:/o:amd:athlon_3150ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_3150ge:-:*:*:*:*:*:*:*

    • Configuration 65:
  • cpe:/o:amd:athlon_3150g_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_3150g:-:*:*:*:*:*:*:*

    • Configuration 66:
  • cpe:/o:amd:athlon_3050ge_firmware:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:amd:athlon_3050ge:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    amd ryzen pro 5650g firmware -
    amd ryzen pro 5650g -
    amd ryzen pro 5650ge firmware -
    amd ryzen pro 5650ge -
    amd ryzen pro 5750g firmware -
    amd ryzen pro 5750g -
    amd ryzen pro 5750ge firmware -
    amd ryzen pro 5750ge -
    amd ryzen pro 5350g firmware -
    amd ryzen pro 5350g -
    amd ryzen pro 5350ge firmware -
    amd ryzen pro 5350ge -
    amd ryzen pro 4750g firmware -
    amd ryzen pro 4750g -
    amd ryzen pro 4750ge firmware -
    amd ryzen pro 4750ge -
    amd ryzen pro 4650g firmware -
    amd ryzen pro 4650g -
    amd ryzen pro 4650ge firmware -
    amd ryzen pro 4650ge -
    amd ryzen pro 4350g firmware -
    amd ryzen pro 4350g -
    amd ryzen pro 4350ge firmware -
    amd ryzen pro 4350ge -
    amd ryzen pro 3900 firmware -
    amd ryzen pro 3900 -
    amd ryzen pro 3700 firmware -
    amd ryzen pro 3700 -
    amd ryzen pro 3600 firmware -
    amd ryzen pro 3600 -
    amd ryzen pro 3400g firmware -
    amd ryzen pro 3400g -
    amd ryzen pro 3400ge firmware -
    amd ryzen pro 3400ge -
    amd ryzen pro 3350g firmware -
    amd ryzen pro 3350g -
    amd ryzen pro 3200g firmware -
    amd ryzen pro 3200g -
    amd ryzen pro 3200ge firmware -
    amd ryzen pro 3200ge -
    amd ryzen pro 2400g firmware -
    amd ryzen pro 2400g -
    amd ryzen pro 2400ge firmware -
    amd ryzen pro 2400ge -
    amd ryzen pro 2200g firmware -
    amd ryzen pro 2200g -
    amd ryzen pro 2200ge firmware -
    amd ryzen pro 2200ge -
    amd ryzen threadripper pro 3995wx firmware -
    amd ryzen threadripper pro 3995wx -
    amd ryzen threadripper pro 3975wx firmware -
    amd ryzen threadripper pro 3975wx -
    amd ryzen threadripper pro 3955wx firmware -
    amd ryzen threadripper pro 3955wx -
    amd ryzen threadripper pro 3945wx firmware -
    amd ryzen threadripper pro 3945wx -
    amd athlon gold pro 3150g firmware -
    amd athlon gold pro 3150g -
    amd athlon gold pro 3150ge firmware -
    amd athlon gold pro 3150ge -
    amd athlon silver pro 3125ge firmware -
    amd athlon silver pro 3125ge -
    amd athlon pro 300ge firmware -
    amd athlon pro 300ge -
    amd athlon pro 200ge firmware -
    amd athlon pro 200ge -
    amd ryzen threadripper 3990x firmware -
    amd ryzen threadripper 3990x -
    amd ryzen threadripper 3970x firmware -
    amd ryzen threadripper 3970x -
    amd ryzen threadripper 3960x firmware -
    amd ryzen threadripper 3960x -
    amd ryzen threadripper 2990wx firmware -
    amd ryzen threadripper 2990wx -
    amd ryzen threadripper 2970wx firmware -
    amd ryzen threadripper 2970wx -
    amd ryzen threadripper 2950x firmware -
    amd ryzen threadripper 2950x -
    amd ryzen threadripper 2920x firmware -
    amd ryzen threadripper 2920x -
    amd ryzen threadripper 1950x firmware -
    amd ryzen threadripper 1950x -
    amd ryzen threadripper 1920x firmware -
    amd ryzen threadripper 1920x -
    amd ryzen threadripper 1920x firmware -
    amd ryzen threadripper 1920x -
    amd ryzen threadripper 1900x firmware -
    amd ryzen threadripper 1900x -
    amd ryzen 5950x firmware -
    amd ryzen 5950x -
    amd ryzen 5800x3d firmware -
    amd ryzen 5800x3d -
    amd ryzen 5900x firmware -
    amd ryzen 5900x -
    amd ryzen 5800x firmware -
    amd ryzen 5800x -
    amd ryzen 5600x firmware -
    amd ryzen 5600x -
    amd ryzen 5700g firmware -
    amd ryzen 5700g -
    amd ryzen 5600g firmware -
    amd ryzen 5600g -
    amd ryzen 5700g firmware -
    amd ryzen 5700g -
    amd ryzen 5700ge firmware -
    amd ryzen 5700ge -
    amd ryzen 5600g firmware -
    amd ryzen 5600g -
    amd ryzen 5600ge firmware -
    amd ryzen 5600ge -
    amd ryzen 5300g firmware -
    amd ryzen 5300g -
    amd ryzen 5300ge firmware -
    amd ryzen 5300ge -
    amd ryzen 4700g firmware -
    amd ryzen 4700g -
    amd ryzen 4600g firmware -
    amd ryzen 4600g -
    amd ryzen 4300g firmware -
    amd ryzen 4300g -
    amd ryzen 4700ge firmware -
    amd ryzen 4700ge -
    amd ryzen 4600ge firmware -
    amd ryzen 4600ge -
    amd ryzen 4300ge firmware -
    amd ryzen 4300ge -
    amd athlon 3150ge firmware -
    amd athlon 3150ge -
    amd athlon 3150g firmware -
    amd athlon 3150g -
    amd athlon 3050ge firmware -
    amd athlon 3050ge -