4.6
CVE-2024-36310
- EPSS 0.01%
- Veröffentlicht 10.02.2026 19:24:21
- Zuletzt bearbeitet 10.02.2026 21:51:48
- Quelle psirt@amd.com
- CVE-Watchlists
- Unerledigt
Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD EPYC™ 9004 Series Processors
Default Statusaffected
Version
GenoaPI 1.0.0.F
Status
unaffected
HerstellerAMD
≫
Produkt
AMD EPYC™ 9005 Series Processors
Default Statusaffected
Version
TurinPI 1.0.0.4
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics
Default Statusaffected
Version
RembrandtPI-FP7_1.0.0.BD
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics
Default Statusaffected
Version
PhoenixPI-FP8-FP7_1.2.0.0c
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics
Default Statusaffected
Version
MendocinoPI-FT6_1.0.0.7c
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 9000HX Series Mobile Processors
Default Statusaffected
Version
FireRangeFL1PI 1.0.0.0a
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ AI Max 300 Series Processors
Default Statusaffected
Version
StrixHaloPI-FP11_1.0.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ AI 300 Series Processors
Default Statusaffected
Version
StrixKrackanPI-FP8_1.1.0.0b
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ Threadripper™ 7000 Processors
Default Statusaffected
Version
StormPeakPI-SP6_1.1.0.0j
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors
Default Statusaffected
Version
StormPeakPI-SP6_1.0.0.1l
Status
unaffected
Version
StormPeakPI-SP6_1.1.0.0j
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 8000 Series Desktop Processors
Default Statusaffected
Version
ComboAM5 1.1.0.3d
Status
unaffected
Version
ComboAM5 1.2.0.3d
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 9000 Series Desktop Processors
Default Statusaffected
Version
ComboAM5 1.2.0.3d
Status
unaffected
HerstellerAMD
≫
Produkt
Not public
Default Statusaffected
Version
ComboAM5 1.2.0.3d
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics
Default Statusaffected
Version
PhoenixPI-FP8-FP7_1.2.0.0c
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics
Default Statusaffected
Version
RembrandtPI-FP7_1.0.0.BD
Status
unaffected
HerstellerAMD
≫
Produkt
AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Genoa")
Default Statusaffected
Version
EmbGenoaPI-SP5 1.0.0.B
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ Embedded 8000 Series Processors
Default Statusaffected
Version
EmbeddedPhoenixPI-FP7r2_1.0.0.2
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Ryzen™ Embedded V3000 Series Processors
Default Statusaffected
Version
Embedded-PI_FP7r2 100F
Status
unaffected
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.004 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 4.6 | 0 | 0 |
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-124 Buffer Underwrite ('Buffer Underflow')
The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.