8.8
CVE-2023-31317
- EPSS 0.02%
- Veröffentlicht 15.05.2026 02:47:12
- Zuletzt bearbeitet 15.05.2026 14:10:17
- Quelle psirt@amd.com
- CVE-Watchlists
- Unerledigt
Improper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitrary code execution.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD Radeon™ RX 6000 Series Graphics Products
Default Statusaffected
Version
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ RX 7000 Series Graphics Products
Default Statusaffected
Version
AMD Software: Adrenalin Edition 25.11.1 (25.20.29.01)
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ PRO W7000 Series Graphics Products
Default Statusaffected
Version
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Radeon™ PRO W6000 Series Graphics Products
Default Statusaffected
Version
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI250
Default Statusaffected
Version
ROCm 7.0
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI210
Default Statusaffected
Version
ROCm 7.0
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.032 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 8.8 | 0 | 0 |
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.