7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Bulletin ID: AMD-SB-6009 **Potential Impact:**Arbitrary code execution **Severity:**High
A potential vulnerability was reported in the AMD Radeon™ Software (Adrenalin Edition and PRO Edition) kernel (pdfwkrnl.sys) driver which may allow arbitrary code execution.
Current AMD analysis shows the attack opportunity is limited given the very short time the kernel driver is running.
Refer to Glossary for explanation of terms
CVE ID | CVSS Score | CVE Description |
---|---|---|
CVE-2023-20598 | High | An improper privilege management in the AMD Radeon™Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution. |
AMD recommends updating to the AMD graphics driver version (or later) indicated below.
Platform | Release Version |
---|---|
AMD Radeon™ RX 5000 Series Graphics Cards | |
AMD Radeon™ RX 6000 Series Graphics Cards | |
AMD Radeon™ RX 7000 Series Graphics Cards | AMD Software: Adrenalin Edition 23.9.2 |
(23.20.11.01) | |
(2023-09-19) | |
AMD Radeon™ PRO W5000 Series Graphics Cards | |
AMD Radeon™ PRO W6000 Series Graphics Cards | |
AMD Radeon™ PRO W7000 Series Graphics Cards | AMD Software: PRO Edition 23.Q4 |
(23.30.14) | |
(23.30.13.03) | |
(2023-12-12) | |
OS Support | Version |
— | — |
Windows® 11 | Version 21H2 and later**** |
Windows® 10 64-bit | Version 1809 and later**** |
Windows® Server 2022 | 21H2 **** |
Windows® Server 2019 | 1809 |
Formerly codenamed programs | Platform | Release Version Mitigation |
---|---|---|
“Dragon Range” | AMD Ryzen™ 7045 Series Processors with Radeon™ Graphics | AMD Software: Adrenalin Edition 23.9.2 |
(23.20.11.01) | ||
(2023-09-19)AMD Software: PRO Edition 23.Q4 | ||
(23.30.13.03) | ||
(2023-12-12) | ||
“Mendocino” FT6 | AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics | |
“Phoenix” FP7/FP7r2/FP8 | AMD Ryzen™ 7040 Series Processors with Radeon™ Graphics | |
“Raphael” | AMD Ryzen™ 7000 Series Processors with Radeon™ Graphics | |
“Rembrandt” | AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics | |
“Rembrandt-R” | AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics |