What is CVE-2023-31365?

CVE-2023-31365 is a low-severity vulnerability in Amd Radeon™ Pro V710 Graphics Products, classified under Integer Overflow or Wraparound. CVSS score: 3.9/10. Published 2025-09-06.

How severe is CVE-2023-31365?

Low severity. CVSS v3 base score is 3.9 out of 10.

Is CVE-2023-31365 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Integer overflow in Amd Radeon™ Pro V710 Graphics Products

CVE-2023-31365

An integer overflow in the SMU could allow a privileged attacker to potentially write memory beyond the end of the reserved dRAM area resulting in loss of integrity or availability.

Vulnerability class: Integer Overflow

EPSS: 0.000 (6.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.9 (Low). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L.

Affected products

Amd Radeon™ Pro V710 Graphics Products — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro W7000 Series Graphics Products — versions AMD Software: PRO Edition 24.Q1 (23.40.20)
Amd Radeon™ Rx 7000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.1.1 (23.40.02)

Weakness classification (CWE)

CWE-190 — Integer Overflow or Wraparound

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html

Frequently asked questions

What is CVE-2023-31365?: CVE-2023-31365 is a low-severity vulnerability in Amd Radeon™ Pro V710 Graphics Products, classified under Integer Overflow or Wraparound. CVSS score: 3.9/10. Published 2025-09-06.
How severe is CVE-2023-31365?: Low severity. CVSS v3 base score is 3.9 out of 10.
Is CVE-2023-31365 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.