CVE-2023-20598

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 17, 2023

Updated: Jul 3, 2024

CWE ID 269

Summary

CVE-2023-20598 is a vulnerability affecting the AMD Radeon Graphics driver. It involves an issue with privilege management, which can enable authenticated attackers to craft malicious IOCTL (Input/Output Control) requests. These requests may grant attackers unauthorized I/O control over arbitrary hardware ports or physical addresses, potentially leading to arbitrary code execution. This vulnerability poses a significant risk to system security if exploited successfully. Users are advised to install the appropriate patches to address this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advanced Micro Devices

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tCeFsi
https://www.cve.org/CVERecord?id=CVE-2023-20598
https://nvd.nist.gov/vuln/detail/CVE-2023-20598

Back to Vulnerability Database

CVE-2023-20598

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations