Junction Point Vulnerability in AMD uProf
CVE-2024-36340

6.6MEDIUM

Key Information:

Vendor: Amd
Status: Amd Μprof
Vendor: CVE Published:; 13 May 2025

What is CVE-2024-36340?

The vulnerability within AMD uProf allows local attackers with low privileges to create junction points, which may lead to unauthorized file deletion or exposure of sensitive information. This can compromise system integrity and confidentiality, posing significant risks to users. It is essential to apply the latest security updates to protect against this vulnerability.

Affected Version(s)

AMD μProf 5.0

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

6.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 13, 2025
Vulnerability Reserved
May 23, 2024

Amd

What is CVE-2024-36340?

Affected Version(s)

References

CVSS V3.1

Timeline