CVE-2023-31309
- EPSS 0.01%
- Veröffentlicht 15.05.2026 02:48:10
- Zuletzt bearbeitet 15.05.2026 14:10:17
Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availability.
CVE-2025-66664
- EPSS 0.01%
- Veröffentlicht 15.05.2026 02:41:56
- Zuletzt bearbeitet 15.05.2026 14:10:17
Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver memory content...
CVE-2023-31306
- EPSS 0.02%
- Veröffentlicht 06.09.2025 16:26:58
- Zuletzt bearbeitet 15.04.2026 00:35:42
Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management (DPM) functions resulting in an out of bounds read and loss of availability.
CVE-2023-20516
- EPSS 0.03%
- Veröffentlicht 06.09.2025 16:13:36
- Zuletzt bearbeitet 15.04.2026 00:35:42
Improper handling of insufficiency privileges in the ASP could allow a privileged attacker to modify Translation Map Registers (TMRs) potentially resulting in loss of confidentiality or integrity.
- EPSS 0.04%
- Veröffentlicht 12.02.2025 00:15:07
- Zuletzt bearbeitet 15.04.2026 00:35:42
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.