Amd

Radeon Software

50 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-36353

  • EPSS 0.03%
  • Veröffentlicht 02.03.2025 18:15:34
  • Zuletzt bearbeitet 25.09.2025 20:15:33

Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.

7.8

CVE-2024-21937

  • EPSS 0.02%
  • Veröffentlicht 12.11.2024 18:15:17
  • Zuletzt bearbeitet 27.11.2024 16:20:37

Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

4.4

CVE-2023-31307

  • EPSS 0.06%
  • Veröffentlicht 13.08.2024 17:15:20
  • Zuletzt bearbeitet 13.12.2024 16:30:30

Improper validation of array index in Power Management Firmware (PMFW) may allow a privileged attacker to cause an out-of-bounds memory read within PMFW, potentially leading to a denial of service.

6

CVE-2023-20510

  • EPSS 0.03%
  • Veröffentlicht 13.08.2024 17:15:18
  • Zuletzt bearbeitet 12.12.2024 20:28:55

An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service.

6

CVE-2021-26367

  • EPSS 0.04%
  • Veröffentlicht 13.08.2024 17:15:17
  • Zuletzt bearbeitet 12.12.2024 20:41:56

A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.

7.5

CVE-2023-31320

  • EPSS 6.64%
  • Veröffentlicht 14.11.2023 19:15:25
  • Zuletzt bearbeitet 21.11.2024 08:01:46

Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

6.7

CVE-2023-20568

  • EPSS 0.03%
  • Veröffentlicht 14.11.2023 19:15:15
  • Zuletzt bearbeitet 13.02.2025 17:16:01

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch RadeonInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

6.7

CVE-2023-20567

  • EPSS 0.03%
  • Veröffentlicht 14.11.2023 19:15:15
  • Zuletzt bearbeitet 13.02.2025 17:16:01

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

5.5

CVE-2021-46748

  • EPSS 0.1%
  • Veröffentlicht 14.11.2023 19:15:10
  • Zuletzt bearbeitet 13.02.2025 17:15:34

Insufficient bounds checking in the ASP (AMD Secure Processor) may allow an attacker to access memory outside the bounds of what is permissible to a TA (Trusted Application) resulting in a potential denial of service.

7.8

CVE-2023-20598

  • EPSS 1.47%
  • Veröffentlicht 17.10.2023 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:41:12

An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execu...