CVE-2023-20593 AMD CVE debrief

Who should care

ABB ARM600 owners and operators, OT/ICS administrators, and system integrators should care most if ARM600 software is deployed on AMD-based hosts or environments. Security teams managing remote access, VPN termination, and industrial network segmentation for ABB M2M Gateway installations should also review the advisory.

Technical summary

CVE-2023-20593 is described as a cross-process information leak in certain AMD processors. The supplied advisory data lists CVSS 3.1 vector AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, which aligns with local access requirements and high confidentiality impact only. The advisory’s affected products are ABB M2M Gateway ARM600 firmware versions 4.1.2 through 5.0.3 and ABB M2M Gateway SW versions 5.0.1 through 5.0.3. The advisory also notes that ARM600 servers use Intel processors, but ARM600 SW may be installed in AMD processor environments, which is the relevant applicability condition.

Defensive priority

Medium. The issue is publicly disclosed and confidentiality-impacting, but the supplied data does not indicate active exploitation, KEV inclusion, or ransomware association. Priority should increase if you have ARM600 SW on AMD hardware or if the affected environment is exposed through weak segmentation or remote-access pathways.

Recommended defensive actions

• Confirm whether any ABB M2M Gateway ARM600 or SW deployment is running on AMD processor environments, since the advisory says that is the relevant exposure condition.
• Inventory affected versions listed in the advisory: ARM600 firmware 4.1.2 through 5.0.3 and SW 5.0.1 through 5.0.3.
• Apply ABB and CISA guidance from the advisory and product documentation references before assuming the issue is irrelevant to your deployment.
• Reduce external exposure by avoiding direct internet-facing components; where remote access is required, use VPN and limit open ports to the minimum necessary.
• Use allowlisting firewall rules, network segmentation, and DMZ placement for internet-terminated connections as described in the advisory mitigations.
• Change default credentials, use strong unique passwords, and restrict administrator/root use to necessary tasks only.
• Keep supporting configuration PCs updated, scan transferred files for malware, and maintain validated backups for affected systems.
• Implement continuous monitoring and remove unused services, ports, accounts, and communication links where feasible.

Evidence notes

This debrief is based on the CISA CSAF advisory ICSA-25-105-08 for CVE-2023-20593, published and modified on 2025-04-07, plus the linked ABB and CISA reference materials included in the source corpus. The advisory names two affected product entries for ABB M2M Gateway ARM600 firmware and software, describes the issue as a cross-process information leak in certain AMD processors, and provides mitigation guidance focused on exposure reduction and network hardening. The supplied CVSS vector is AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Official resources