Vulnerability in AMD Secure Processor Affects Video Core Next Firmware
CVE-2023-31316

7.1HIGH

Key Information:

Vendor: Amd
Status: Amd Ryzen™ 5000 Series Mobile Processors With Radeon™ Graphics; Amd Ryzen™ 7000 Series Desktop Processors; Amd Ryzen™ 4000 Series Desktop Processors; Amd Ryzen™ 5000 Series Desktop Processors With Radeon™ Graphics
Vendor: CVE Published:; 15 May 2026

What is CVE-2023-31316?

A vulnerability exists within the AMD Secure Processor that compromises the integrity of the hardware configuration state during power save and restore operations. An attacker with the capability to write outside the trusted memory range can manipulate the execution flow of the Video Core Next firmware. This may lead to significant consequences regarding the confidentiality, availability, and integrity of the affected systems.

Affected Version(s)

AMD Instinct™ MI210 ROCm 6.4

AMD Instinct™ MI250 ROCm 6.4

AMD Radeon™ PRO V620 Contact your AMD Customer Engineering representative

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2026
Vulnerability Reserved
Apr 27, 2023

CVE-2023-31316 Data

JSON

Amd

What is CVE-2023-31316?

Affected Version(s)

References

CVSS V4

Timeline