6
CVE-2024-36346
- EPSS 0.03%
- Veröffentlicht 06.09.2025 17:43:14
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle psirt@amd.com
- CVE-Watchlists
- Unerledigt
Improper input validation in AMD Power Management Firmware (PMFW) could allow a privileged attacker from Guest VM to send arbitrary input data potentially causing a GPU Reset condition.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD Instinct™ MI300A
Default Statusaffected
Version
BKC 21
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI300X
Default Statusaffected
Version
BKC 24.13
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.081 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 6 | 1.5 | 4 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
|
CWE-1284 Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.