Vulnerability in Amd Radeon™ Pro V520

CVE-2023-31309

Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availab…

EPSS: 0.000 (4.5th percentile) — read the EPSS interpretation.

Affected products

Amd Radeon™ Pro V520 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro V620 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro W6000 Series Graphics Products — versions AMD Software: PRO Edition 23.Q4
Amd Radeon™ Rx 6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 23.12.1 (23.30.13.01)

Weakness classification (CWE)

CWE-129 — Improper Validation of Array Index

References

psirt@amd.com