AMD Security Bulletin AMD-SB-7039, May 2025
Vulnerability Disclosure:
Supermicro is aware of the security vulnerability which may allow a privileged attacker to access the Crypto Co-Processor (CCP) registers from x86 architecture.
CVE:
- CVE-2023-20599
- Severity: High
Findings:
A vulnerability in some AMD CPU processors may allow a privileged attacker to interfere with the operations of the Crypto Co-Processor (CCP) hardware of the AMD Secure Processor (ASP). This vulnerability, if exploited, could potentially lead to decryption of sensitive information stored within the system's non-volatile random-access memory (NVRAM) and other protected data store, including private keys under the control of AMD Secure Processor.
Affected products:
| AMD Motherboard Generation | BIOS Version with the fix |
|---|---|
| H11 – H11DST-B – Naples/Rome | v 3.0 |
| H11 – H11SSW – Naples/Rome | v 2.8 |
| H11 – H11DSI/-NT – Naples/Rome | v 3.0 |
| H12 – Milan/Rome | v 3.4 |
Remediation:
- All affected Supermicro motherboard SKUs will require a BIOS update to mitigate this potential vulnerability.
- An updated BIOS firmware had been created to mitigate this potential vulnerability. Supermicro is currently testing and validating affected products. Please check Release Notes for the resolution.