CVE-2024-36350

Medienbericht

EPSS 0.03%
Veröffentlicht 08.07.2025 16:56:39
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle psirt@amd.com
CVE-Watchlists
Login
Unerledigt
Login

A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

CNA 23 VulnDex Vulnerability Enrichment 10

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerAMD

≫

Produkt AMD EPYC™ 7003 Series Processors

Default Statusaffected

Version MilanPI 1.0.0.G + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ 9004 Series Processors

Default Statusaffected

Version GenoaPI 1.0.0.E + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ 8004 Series Processors

Default Statusaffected

Version GenoaPI 1.0.0.E + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ 9V64H Processor

Default Statusaffected

Version MI300PI 1.0.0.7 + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 5000 Series Desktop Processors

Default Statusaffected

Version ComboAM4v2PI 1.2.0.E + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics

Default Statusaffected

Version ComboAM4v2PI 1.2.0.E + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7000 Series Desktop Processors

Default Statusaffected

Version ComboAM5PI 1.2.0.3 + OS Updates

Status unaffected

Version ComboAM5PI 1.0.0.a+ OS Updates

Status unaffected

Version ComboAM5PI 1.1.0.3c+ OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 8000 Series Processor with Radeon™ Graphics

Default Statusaffected

Version ComboAM5PI 1.2.0.3 + OS Updates

Status unaffected

Version ComboAM5PI 1.1.0.3c+ OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors

Default Statusaffected

Version StormPeakPI-SP6 1.1.0.0i + OS Updates

Status unaffected

Version StormPeakPI-SP6 1.0.0.1k + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 6000 Series Processor with Radeon™ Graphics

Default Statusaffected

Version RembrandtPI-FP7 1.0.0.Bb + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7035 Series Processor with Radeon™ Graphics

Default Statusaffected

Version RembrandtPI-FP7 1.0.0.Bb + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7000 Series Processors with Radeon™ Graphics

Default Statusaffected

Version CezannePI-FP6 1.0.1.1b + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7040 Series Processors with Radeon™ Graphics

Default Statusaffected

Version PhoenixPI-FP8-FP7 1.2.0.0 + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version PhoenixPI-FP8-FP7 1.2.0.0 + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7000 Series Mobile Processors

Default Statusaffected

Version DragonRangeFL1 1.0.0.3g + OS Updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ Embedded 7003 Series Processors

Default Statusaffected

Version EmbMilanPI-SP3 1.0.0.A + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ Embedded 8004 Series Processors

Default Statusaffected

Version EmbGenoaPI-SP5 1.0.0.9 + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ Embedded 9004 Series Processors

Default Statusaffected

Version EmbGenoaPI-SP5 1.0.0.9 + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Embedded 5000 Series Processors

Default Statusaffected

Version EmbAM4PI 1.0.0.7 + OS Update

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Embedded 7000 Series Processors

Default Statusaffected

Version EmbeddedAM5PI 1.0.0.3 + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Embedded V3000 Series Processors

Default Statusaffected

Version Embedded-PI_FP7r2 100C + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD EPYC™ Embedded 97X4

Default Statusaffected

Version EmbGenoaPI-SP5 1.0.0.9 + OS updates

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 5000 Series Processors with Radeon™ Graphics

Default Statusaffected

Version CezannePI-FP6 1.0.1.1b + OS Updates

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.092

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@amd.com	5.6	1.1	4	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://www.heise.de/news/Neue-Sicherheitsluecken-in-verschiedenen-modernen-Ryzen-und-Epyc-Prozessoren-AMDs-10479679.html

Media Report

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00007.html

https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html

http://xenbits.xen.org/xsa/advisory-471.html

http://www.openwall.com/lists/oss-security/2025/08/28/2

https://nvd.nist.gov/vuln/detail/CVE-2024-36350

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-36350

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-36350

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-36350