Privilege Escalation Vulnerability in AMD StoreMI™
CVE-2024-21923

7.3HIGH

Key Information:

Vendor: Amd
Status: Amd Storemi™
Vendor: CVE Published:; 23 November 2025

What is CVE-2024-21923?

A security flaw in AMD StoreMI™ arises from incorrect default permissions, potentially allowing unauthorized users to escalate their privileges. If exploited, this vulnerability could enable an attacker to execute arbitrary code on the affected system, posing significant risks to data integrity and system security.

Affected Version(s)

AMD StoreMI™ No fix planned (EOL)

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 23, 2025
Vulnerability Reserved
Jan 3, 2024

JSON

Amd

What is CVE-2024-21923?

Affected Version(s)

References

CVSS V3.1

Timeline