CVE-2023-31306

LOW

3.3

Description

Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management (DPM) functions resulting in an out of bounds read and loss of availability.

CVE Details

CVSS v3.1 Score3.3

SeverityLOW

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Attack VectorLOCAL

ComplexityLOW

Privileges RequiredLOW

User InteractionNONE

Published9/6/2025

Last Modified9/8/2025

Sourcenvd

Honeypot Sightings0

Weaknesses (CWE)

CWE-129

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html(psirt@amd.com)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.