AMD Security Bulletin AMD-SB-7039, June 2025

Vulnerability Disclosure:

Supermicro is aware of the security vulnerability which may allow a privileged attacker to access the Crypto Co-Processor (CCP) registers from x86 architecture.

CVE:

CVE-2023-20599
- Severity: High

Findings:

A vulnerability in some AMD CPU processors may allow a privileged attacker to interfere with the operations of the Crypto Co-Processor (CCP) hardware of the AMD Secure Processor (ASP). This vulnerability, if exploited, could potentially lead to decryption of sensitive information stored within the system's non-volatile random-access memory (NVRAM) and other protected data store, including private keys under the control of AMD Secure Processor.

Affected products:

AMD Motherboard Generation	BIOS Version with Fix
H11 – EPYC™ 7001/7002 series	v 2.8
H12 – H12SSW-AN6 – EPYC 7002/7003 series	v 2.7
H12 – H12SSW-iNR/NTR – EPYC 7002/7003 series	v 2.8
H12 – H12SSW-iNL/NTL – EPYC 7002/7003 series	v 2.8
H12 – H12DSG-O-CPU – EPYC 7002/7003 series	v 2.8
H12 – H12DST-B – EPYC 7002/7003 series	v 2.8
H12 – H12SST-PS – EPYC 7002/7003 series	v 2.8
H12 – H12SSW-iN/NT – EPYC 7002/7003 series	v 2.8
H12 – BH12SSi-M25 – EPYC 7002/7003 series	v 3.1
H12 – H12DSU-iN – EPYC 7002/7003 series	v 3.0
H12 – H12SSFF-AN6 – EPYC 7002/7003 series	v 3.1
H12 – H12SSL-i/C/CT/NT – EPYC 7002/7003 series	v 2.8
H12 – H12DSi-N6/NT6 – EPYC 7002/7003 series	v 3.0
H12 – H12SSFR-AN6 – EPYC 7002/7003 series	v 2.9
H12 – H12DSG-Q-CPU6 – EPYC 7002/7003 series	v 2.8
H12 – H12SSG-AN6 – EPYC 7002/7003 series	v 2.9
H12 – H12DGQ-NT6 – EPYC 7002/7003 series	v 2.8
H12 – H12SSG-ANP6 – EPYC 7002/7003 series	v 2.9
H12 – H12DGO-6 – EPYC 7002/7003 series	v 3.2
H12 – H12DSU-iNR – EPYC 7002/7003 series	v 2.9

Remediation:

All affected Supermicro motherboard SKUs will require a BIOS update to mitigate this potential vulnerability.
An updated BIOS firmware had been created to mitigate this potential vulnerability. Supermicro is currently testing and validating affected products. Please check Release Notes for the resolution.

Resources:

AMD Security Notice AMD-SN-7039
- CVE-2023-20599

Servidores de montaje en bastidor

Procesador dual 1U

Procesador doble 2U

Procesador único

Multiprocesador

Familias de productos

Servidores GPU

Líneas GPU 8U/10U

Líneas GPU 4U/5U

Líneas GPU 2U

Líneas GPU 1U

Servidores Twin

FlexTwin™

BigTwin®

GrandTwin®

TwinPro®

Twin

FatTwin®

Servidores blade

SuperBlade®

MicroBlade®

MicroCloud

Servidores de almacenamiento

Todos los sistemas de almacenamiento

Todo Flash NVMe

Almacenamiento de carga superior

JBOF

Petascale Grace Storage

Almacenamiento optimizado para empresas

Cajas de almacenamiento JBOD

Placas base

Placas de servidor

Estaciones de trabajo

Placas integradas / IoT

Placas de sobremesa / juegos

Gen. anterior

Matriz de placas base

SKU globales

Chasis

Chasis 1U

Chasis 2U

Chasis 3U

Chasis 4U / Torre

Media / Minitorre

Chasis integrados / IoT

Racks móviles / Kits de unidades

Cajas de almacenamiento JBOD

SKU globales

SuperRack®

Ingeniería de soluciones para centros de datos (DCSE)

Servicio de integración de racks

Accesorios

Matriz de cables

Matriz de tarjetas Riser

Matriz de AOC de almacenamiento

Matriz de fuentes de alimentación

Matriz de disipadores térmicos

Matriz de ventiladores

Bastidores móviles / Kits de unidad

Biseles frontales de chasis

Almacenamiento, E/S, Seguridad

Servidores Edge y Telecom

Sistemas Edge sin ventilador

Sistemas Edge compactos

Sistemas GPU Edge

Sistemas Edge para exteriores

Sistemas de red Edge 1U

Sistemas 5G/Telecom

Componentes integrados

Placas base integradas

Chasis integrados

Conmutadores

Adaptadores

SuperWorkstations

Liquid-Cooled AI Development Platform

Un solo procesador

Doble procesador

Soluciones Supero™ para juegos

Infraestructura de IA

Data Center Building Block Solutions® (DCBBS)