9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
39.3%
**Bulletin ID:**AMD-SB-6007 **Potential Impact:**Escalation of Privilege **Severity:**High
Radeon™ Software Crimson ReLive Edition is an advanced graphics software designed for enabling high-performance gaming and engaging VR experiences.
A potential vulnerability was reported in Radeon™ Software Crimson ReLive Edition which may allow escalation of privilege. Radeon™ Software Crimson ReLive Edition falls outside of the security support lifecycle and AMD does not plan to release any mitigations.
CVE-2023-20586
Insufficient bounds checking in Radeon™ Software Crimson ReLive Edition may allow an attacker to perform an out of bounds read when an IRP (IO Request Packet) is received, potentially leading to privilege escalation.
AMD recommends discontinuing use and uninstalling Radeon™ Software Crimson ReLive Edition.