Unrated severityNVD Advisory· Published Oct 17, 2023· Updated Aug 2, 2024
CVE-2023-20598
CVE-2023-20598
Description
An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution.
Affected products
13- AMD/Radeon™ PRO W5000 Series Graphics Cardsv5Range: Various
- AMD/Radeon™ PRO W6000 Series Graphics Cardsv5Range: various
- AMD/Radeon™ PRO W7000 Series Graphics Cardsv5Range: various
- AMD/Radeon™ RX 5000 Series Graphics Cardsv5Range: various
- AMD/Radeon™ RX 6000 Series Graphics Cardsv5Range: various
- AMD/Radeon™ RX 7000 Series Graphics Cardsv5Range: various
- AMD/Ryzen™ 6000 Series Processors with Radeon™ Graphicsv5Range: various
- AMD/Ryzen™ 7000 Series Processors with Radeon™ Graphicsv5Range: various
- AMD/Ryzen™ 7020 Series Processors with Radeon™ Graphicsv5Range: various
- AMD/Ryzen™ 7035 Series Processors with Radeon™ Graphicsv5Range: various
- AMD/Ryzen™ 7040 Series Processors with Radeon™ Graphicsv5Range: various
- AMD/Ryzen™ 7045 Series Processors with Radeon™ Graphicsv5Range: various
Patches
Vulnerability mechanics
References
1- www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6009mitrevendor-advisory
News mentions
0No linked articles in our index yet.