Improper Input Validation in AMD Graphics Driver
CVE-2024-36352

8.4HIGH

Key Information:

Vendor: Amd
Status: Amd Ryzen™ 4000 Series Mobile Processors With Radeon™ Graphics; Amd Ryzen™ 6000 Series Processors With Radeon™ Graphics; Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics; Amd Ryzen™ 7040 Series Mobile Processors With Radeon™ Graphics
Vendor: CVE Published:; 6 September 2025

What is CVE-2024-36352?

The AMD Graphics Driver is susceptible to an improper input validation vulnerability that enables an attacker to provide a specially crafted pointer. This could lead to arbitrary writes to memory or cause a denial of service, thereby compromising system stability and potentially executing unintended actions on the host machine. Users are advised to apply the latest patches to mitigate these risks.

Affected Version(s)

AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics AMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)

AMD Radeon™ Instinct™ MI25 Graphics Products Contact your AMD Customer Engineering representative

AMD Radeon™ PRO V520 Graphics Products Contact your AMD Customer Engineering representative

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 6, 2025
Vulnerability Reserved
May 23, 2024

Credit

Reported through AMD Bug Bounty Program

Amd

What is CVE-2024-36352?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit