CVE-2023-31320

moderate-risk

Published 2023-11-14

Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

Do I need to act?

5.2% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (6)

Radeon Software

Radeon Rx Vega 56 Firmware

Radeon Rx Vega 64 Firmware

Radeon Pro Vega 56 Firmware

Radeon Pro Vega 64 Firmware

Affected Vendors

Amd

References (2)

Vendor Advisory https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 8/34 · Low

Exposure 13/34 · Low