Skip to main content
Live Webinar with SANS (June 25)— Agentic CTI Automation for Fun & ProfitRegister Free
Mallory
Back to vulnerabilities
Medium

INVD Instruction Cache Write-back Integrity Issue in AMD CPUs

IdentifiersCVE-2023-20592CWE-693

CVE-2023-20592 describes a vulnerability in certain AMD CPUs where improper or unexpected behavior of the INVD instruction can be triggered by a malicious hypervisor. This can affect the cache line write-back behavior, potentially compromising the integrity of guest VM memory. The vulnerability is exploitable in virtualized environments where the attacker controls the hypervisor and can issue INVD instructions to manipulate cache behavior, leading to possible corruption or exposure of guest VM data.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

An attacker with control over the hypervisor can exploit this vulnerability to affect the cache write-back process, potentially leading to loss of memory integrity for guest VMs. This could result in data corruption, exposure, or manipulation within the guest VM, undermining the security guarantees of virtualization.

Mitigation

If you can’t patch tonight, do this now.

Restrict hypervisor access to trusted administrators only. Monitor for and prevent untrusted or malicious hypervisors from running on host systems. Where possible, disable or limit the use of the INVD instruction in virtualized environments until patches are applied.

Remediation

Patch, then assume compromise.

Apply microcode or firmware updates provided by AMD that address the improper handling of the INVD instruction. Ensure that all hypervisors and host systems are updated to versions that include these mitigations.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
Advanced Micro DevicesEpyc 7001 Firmwareoperating_system
Advanced Micro DevicesEpyc 7203 Firmwareoperating_system
Advanced Micro DevicesEpyc 7203p Firmwareoperating_system
Advanced Micro DevicesEpyc 7232p Firmwareoperating_system
Advanced Micro DevicesEpyc 7251 Firmwareoperating_system
Advanced Micro DevicesEpyc 7252 Firmwareoperating_system
Advanced Micro DevicesEpyc 7261 Firmwareoperating_system
Advanced Micro DevicesEpyc 7262 Firmwareoperating_system
Advanced Micro DevicesEpyc 7272 Firmwareoperating_system
Advanced Micro DevicesEpyc 7281 Firmwareoperating_system
Advanced Micro DevicesEpyc 7282 Firmwareoperating_system
Advanced Micro DevicesEpyc 72f3 Firmwareoperating_system
Advanced Micro DevicesEpyc 7301 Firmwareoperating_system
Advanced Micro DevicesEpyc 7302 Firmwareoperating_system
Advanced Micro DevicesEpyc 7302p Firmwareoperating_system
Advanced Micro DevicesEpyc 7303 Firmwareoperating_system
Advanced Micro DevicesEpyc 7303p Firmwareoperating_system
Advanced Micro DevicesEpyc 7313 Firmwareoperating_system
Advanced Micro DevicesEpyc 7313p Firmwareoperating_system
Advanced Micro DevicesEpyc 7343 Firmwareoperating_system
Advanced Micro DevicesEpyc 7351 Firmwareoperating_system
Advanced Micro DevicesEpyc 7351p Firmwareoperating_system
Advanced Micro DevicesEpyc 7352 Firmwareoperating_system
Advanced Micro DevicesEpyc 7371 Firmwareoperating_system
Advanced Micro DevicesEpyc 7373x Firmwareoperating_system
Advanced Micro DevicesEpyc 73f3 Firmwareoperating_system
Advanced Micro DevicesEpyc 7401 Firmwareoperating_system
Advanced Micro DevicesEpyc 7401p Firmwareoperating_system
Advanced Micro DevicesEpyc 7402 Firmwareoperating_system
Advanced Micro DevicesEpyc 7402p Firmwareoperating_system
Advanced Micro DevicesEpyc 7413 Firmwareoperating_system
Advanced Micro DevicesEpyc 7443 Firmwareoperating_system
Advanced Micro DevicesEpyc 7443p Firmwareoperating_system
Advanced Micro DevicesEpyc 7451 Firmwareoperating_system
Advanced Micro DevicesEpyc 7452 Firmwareoperating_system
Advanced Micro DevicesEpyc 7453 Firmwareoperating_system
Advanced Micro DevicesEpyc 7473x Firmwareoperating_system
Advanced Micro DevicesEpyc 74f3 Firmwareoperating_system
Advanced Micro DevicesEpyc 7501 Firmwareoperating_system
Advanced Micro DevicesEpyc 7502 Firmwareoperating_system
Advanced Micro DevicesEpyc 7502p Firmwareoperating_system
Advanced Micro DevicesEpyc 7513 Firmwareoperating_system
Advanced Micro DevicesEpyc 7532 Firmwareoperating_system
Advanced Micro DevicesEpyc 7542 Firmwareoperating_system
Advanced Micro DevicesEpyc 7543 Firmwareoperating_system
Advanced Micro DevicesEpyc 7543p Firmwareoperating_system
Advanced Micro DevicesEpyc 7551 Firmwareoperating_system
Advanced Micro DevicesEpyc 7551p Firmwareoperating_system
Advanced Micro DevicesEpyc 7552 Firmwareoperating_system
Advanced Micro DevicesEpyc 7573x Firmwareoperating_system
Advanced Micro DevicesEpyc 75f3 Firmwareoperating_system
Advanced Micro DevicesEpyc 7601 Firmwareoperating_system
Advanced Micro DevicesEpyc 7642 Firmwareoperating_system
Advanced Micro DevicesEpyc 7643 Firmwareoperating_system
Advanced Micro DevicesEpyc 7643p Firmwareoperating_system
Advanced Micro DevicesEpyc 7662 Firmwareoperating_system
Advanced Micro DevicesEpyc 7663 Firmwareoperating_system
Advanced Micro DevicesEpyc 7663p Firmwareoperating_system
Advanced Micro DevicesEpyc 7702 Firmwareoperating_system
Advanced Micro DevicesEpyc 7702p Firmwareoperating_system
Advanced Micro DevicesEpyc 7713 Firmwareoperating_system
Advanced Micro DevicesEpyc 7713p Firmwareoperating_system
Advanced Micro DevicesEpyc 7742 Firmwareoperating_system
Advanced Micro DevicesEpyc 7763 Firmwareoperating_system
Advanced Micro DevicesEpyc 7773x Firmwareoperating_system
Advanced Micro DevicesEpyc 7f32 Firmwareoperating_system
Advanced Micro DevicesEpyc 7f52 Firmwareoperating_system
Advanced Micro DevicesEpyc 7f72 Firmwareoperating_system
Advanced Micro DevicesEpyc 7h12 Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

1 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

1 SOURCESView more in app
What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2023-20592
NVD
nvd.nist.gov/vuln/detail/CVE-2023-20592
MITRE CWE · CWE-693
cwe.mitre.org
Vendor Advisory
amd.com/en/corporate/product-security/bulletin/AMD-SB-3005