Vulnerability in Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics
CVE-2024-36353
Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.
EPSS: 0.001 (18.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N.
Affected products
- Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics — versions Radeon Software For Linux 25.10.1
- Amd Radeon™ Pro V520 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro V620 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Pro V710 — versions Contact your AMD Customer Engineering representative
- Amd Radeon™ Rx 5000/pro W5000 Series Graphics Products — versions Radeon Software For Linux 25.10.1
- Amd Radeon™ Rx6000/pro W6000 Series Graphics Products — versions Radeon Software For Linux 25.10.1
- Amd Radeon™ Rx 7000/pro W7000 Series Graphics Products — versions Radeon Software For Linux 25.10.1
- Amd Ryzen Embedded V2000a Series Processors — versions Kernel 6.12.25 LTS
- Amd Ryzen™ 4000 Series Desktop Processors — versions Radeon Software For Linux 25.10.1
- Amd Ryzen™ 4000 Series Mobile Processors With Radeon™ Graphics — versions Radeon Software For Linux 25.10.1
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2024-36353?
- CVE-2024-36353 is a medium-severity vulnerability in Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics, classified under Incomplete Cleanup. CVSS score: 6.5/10. Published 2025-03-02.
- How severe is CVE-2024-36353?
- Medium severity. CVSS v3 base score is 6.5 out of 10.