Amd

Radeon Software

52 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-20548

  • EPSS 0.01%
  • Veröffentlicht 11.02.2026 14:35:16
  • Zuletzt bearbeitet 05.03.2026 17:44:49

A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to corrupt memory resulting in loss of integrity, confidentiality, or availability.

7.8

CVE-2023-31324

  • EPSS 0.01%
  • Veröffentlicht 11.02.2026 14:34:54
  • Zuletzt bearbeitet 05.03.2026 17:45:32

A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to modify External Global Memory Interconnect Trusted Agent (XGMI TA) commands as they are processed potentially resulting in loss of confid...

6.5

CVE-2024-36353

  • EPSS 0.04%
  • Veröffentlicht 02.03.2025 18:15:34
  • Zuletzt bearbeitet 25.09.2025 20:15:33

Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.

7.8

CVE-2024-21937

  • EPSS 0.07%
  • Veröffentlicht 12.11.2024 18:15:17
  • Zuletzt bearbeitet 27.11.2024 16:20:37

Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

4.4

CVE-2023-31307

  • EPSS 0.06%
  • Veröffentlicht 13.08.2024 17:15:20
  • Zuletzt bearbeitet 13.12.2024 16:30:30

Improper validation of array index in Power Management Firmware (PMFW) may allow a privileged attacker to cause an out-of-bounds memory read within PMFW, potentially leading to a denial of service.

6

CVE-2023-20510

  • EPSS 0.03%
  • Veröffentlicht 13.08.2024 17:15:18
  • Zuletzt bearbeitet 12.12.2024 20:28:55

An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service.

6

CVE-2021-26367

  • EPSS 0.04%
  • Veröffentlicht 13.08.2024 17:15:17
  • Zuletzt bearbeitet 12.12.2024 20:41:56

A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.

7.5

CVE-2023-31320

  • EPSS 5.18%
  • Veröffentlicht 14.11.2023 19:15:25
  • Zuletzt bearbeitet 21.11.2024 08:01:46

Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

6.7

CVE-2023-20568

  • EPSS 0.03%
  • Veröffentlicht 14.11.2023 19:15:15
  • Zuletzt bearbeitet 13.02.2025 17:16:01

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch RadeonInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

6.7

CVE-2023-20567

  • EPSS 0.03%
  • Veröffentlicht 14.11.2023 19:15:15
  • Zuletzt bearbeitet 13.02.2025 17:16:01

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.