Out-of-Bounds Write Vulnerability in AMD μProf Could Lead to Windows OS Crash and Denial of Service
CVE-2023-31341
5.5MEDIUM
Summary
An input validation flaw in the Input Output Control (IOCTL) processing of AMD Prof may permit authenticated users to exploit an out-of-bounds write scenario. This exploitation could lead to significant disruptions, including the potential for system crashes on Windows operating systems. Users of impacted AMD products should take immediate steps to evaluate their security posture and apply available mitigations.
Affected Version(s)
μProf Tool μProf Tool < 3.4.494
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database