AMD μProf Vulnerability Could Lead to Denial of Service
CVE-2023-31366

5.5MEDIUM

Key Information:

Vendor: Amd
Status: Μprof Tool
Vendor: CVE Published:; 13 August 2024

What is CVE-2023-31366?

An input validation flaw in AMD µProf enables attackers to execute a write operation at an invalid memory address. This vulnerability poses significant security risks, including the potential to cause a denial of service. Organizations utilizing AMD µProf are advised to implement immediate mitigations to prevent possible exploitation and safeguard their systems against unauthorized access and service interruptions.

Affected Version(s)

μProf Tool μProf Tool < 3.4.494

References

https://www.amd.com/en/corporate/product-security/bulleti...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 13, 2024
Vulnerability Reserved
Apr 27, 2023

Amd

What is CVE-2023-31366?

Affected Version(s)

References

CVSS V3.1

Timeline