Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HAmd Radeon Software
APPAmd< 24.6.1< 24.7.1< 24.q2Amd Radeon Software For Hip
APPAmd< 24.10.16
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCELPE
Powiązane podatności
CVE-2023-20586CRITICAL9.8ten sam produkt
A potential vulnerability was reported in Radeon™ Software Crimson ReLive Edition which may allow escalation ...
CVE-2024-36333HIGH7.0ten sam produkt
A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalati...
CVE-2023-20548HIGH7.1ten sam produkt
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker ...
CVE-2023-31324HIGH7.1ten sam produkt
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker ...
CVE-2023-31320HIGH7.5ten sam produkt
Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the dis...