Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution.
References
Link | Resource |
---|---|
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7003 | Patch Vendor Advisory |
Configurations
History
14 Aug 2023, 13:34
Type | Values Removed | Values Added |
---|---|---|
First Time |
Microsoft
Amd Amd amd Uprof Linux Linux linux Kernel Microsoft windows |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:amd:amd_uprof:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
References | (MISC) https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7003 - Patch, Vendor Advisory | |
CWE | NVD-CWE-noinfo |
08 Aug 2023, 18:33
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-08-08 18:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-20562
Mitre link : CVE-2023-20562
CVE.ORG link : CVE-2023-20562
JSON object : View
Products Affected
linux
- linux_kernel
amd
- amd_uprof
microsoft
- windows
CWE