Lucene search
AMDCVE-2024-21972HistoryApr 23, 2024 - 5:15 p.m.
CVE-2024-21972
2024-04-2317:15:46
CWE-787
AMD
web.nvd.nist.gov
48
amd radeon
user mode driver
directx 11
out of bounds write vulnerability
arbitrary code execution
shader
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
An out of bounds write vulnerability in the AMD Radeon™ user mode driver for DirectX® 11 could allow an attacker with access to a malformed shader to potentially achieve arbitrary code execution.
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "AMD Software: Adrenalin Edition ",
"vendor": "AMD",
"versions": [
{
"lessThan": "12.1.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "AMD Software: PRO Edition",
"vendor": "AMD",
"versions": [
{
"lessThan": "24.Q1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-21972
2024-04-23 16:36:03
talos
talos
nvd
nvd
CVE-2024-21972
2024-04-23 17:15:46
vulnrichment
vulnrichment
CVE-2024-21972
2024-04-23 16:36:03
amd
amd
Radeon™ Driver for DirectX® 11 Shader Vulnerabilities
2024-04-09 00:00:00
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-21972