6.8
CVE-2023-31309
- EPSS 0.01%
- Veröffentlicht 15.05.2026 02:48:10
- Zuletzt bearbeitet 15.05.2026 14:10:17
- Quelle psirt@amd.com
- CVE-Watchlists
- Unerledigt
Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availability.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD Radeon™ RX 6000 Series Graphics Products
Default Statusaffected
Version
AMD Software: Adrenalin Edition 23.12.1 (23.30.13.01)
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ PRO W6000 Series Graphics Products
Default Statusaffected
Version
AMD Software: PRO Edition 23.Q4
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ PRO V520
Default Statusaffected
Version
Contact your AMD Customer Engineering representative
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ PRO V620
Default Statusaffected
Version
Contact your AMD Customer Engineering representative
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.022 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 6.8 | 0 | 0 |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-129 Improper Validation of Array Index
The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.