DLL Hijacking Vulnerability in AMD Optimizing CPU Libraries
CVE-2024-36339

7.3HIGH

Key Information:

Vendor: Amd
Status: Amd Optimizing Cpu Libraries (aocl)
Vendor: CVE Published:; 13 May 2025

What is CVE-2024-36339?

A DLL hijacking vulnerability in the AMD Optimizing CPU Libraries enables threat actors to exploit the dynamic link library loading process. This could allow unauthorized privilege escalation, leading to potential arbitrary code execution on affected systems. Users and organizations utilizing these libraries are advised to review their security posture and consider the implications of this vulnerability as detailed in AMD's security bulletin.

Affected Version(s)

AMD Optimizing CPU Libraries (AOCL) 5.0

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 13, 2025
Vulnerability Reserved
May 23, 2024

JSON

Amd

What is CVE-2024-36339?

Affected Version(s)

References

CVSS V3.1

Timeline