CVE-2023-20568

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Nov 14, 2023

Updated: Nov 27, 2023

CWE ID 347

Summary

CVE-2023-20568 is a vulnerability affecting the RadeonTM RX Vega M Graphics driver for Windows. It allows an attacker with administrative privileges to bypass file signature validation when launching RadeonInstaller.exe, potentially enabling arbitrary code execution. This issue can be exploited through maliciously crafted graphics driver installers, posing a significant risk to users who download and install drivers from untrusted sources. The vulnerability underscores the importance of keeping graphics drivers up-to-date and exercising caution when installing software from unverified sources.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tZ-baa
https://www.cve.org/CVERecord?id=CVE-2023-20568
https://nvd.nist.gov/vuln/detail/CVE-2023-20568

Back to Vulnerability Database

CVE-2023-20568

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations