CVE-2023-31306

LOW

3.3

Description

Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management (DPM) functions resulting in an out of bounds read and loss of availability.

Details CVE

Score CVSS v3.13.3

SeveriteLOW

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie9/6/2025

Derniere modification9/8/2025

Sourcenvd

Observations honeypot0

Faiblesses (CWE)

CWE-129

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html(psirt@amd.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.