Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-20598
HistoryOct 17, 2023 - 2:15 p.m.

CVE-2023-20598

2023-10-1714:15:09
[email protected]
web.nvd.nist.gov
cve-2023-20598
privilege management
amd radeon
graphics driver
ioctl request
arbitrary code execution

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution.

Affected configurations

NVD
Node
amdradeon_rx_5300Match-
OR
amdradeon_rx_5300_xtMatch-
OR
amdradeon_rx_5300mMatch-
OR
amdradeon_rx_5500Match-
OR
amdradeon_rx_5500_xtMatch-
OR
amdradeon_rx_5500mMatch-
OR
amdradeon_rx_5600Match-
OR
amdradeon_rx_5600_xtMatch-
OR
amdradeon_rx_5600mMatch-
OR
amdradeon_rx_5700Match-
OR
amdradeon_rx_5700_xtMatch-
OR
amdradeon_rx_5700mMatch-
OR
amdradeon_rx_6300mMatch-
OR
amdradeon_rx_6400Match-
OR
amdradeon_rx_6450mMatch-
OR
amdradeon_rx_6500_xtMatch-
OR
amdradeon_rx_6500mMatch-
OR
amdradeon_rx_6550mMatch-
OR
amdradeon_rx_6550sMatch-
OR
amdradeon_rx_6600Match-
OR
amdradeon_rx_6600_xtMatch-
OR
amdradeon_rx_6600mMatch-
OR
amdradeon_rx_6600sMatch-
OR
amdradeon_rx_6650_xtMatch-
OR
amdradeon_rx_6650mMatch-
OR
amdradeon_rx_6650m_xtMatch-
OR
amdradeon_rx_6700Match-
OR
amdradeon_rx_6700_xtMatch-
OR
amdradeon_rx_6700mMatch-
OR
amdradeon_rx_6700sMatch-
OR
amdradeon_rx_6750_gre_10gbMatch-
OR
amdradeon_rx_6750_gre_12gbMatch-
OR
amdradeon_rx_6750_xtMatch-
OR
amdradeon_rx_6800Match-
OR
amdradeon_rx_6800_xtMatch-
OR
amdradeon_rx_6800sMatch-
OR
amdradeon_rx_6900_xtMatch-
OR
amdradeon_rx_6950_xtMatch-
OR
amdradeon_rx_7600Match-
OR
amdradeon_rx_7600mMatch-
OR
amdradeon_rx_7600m_xtMatch-
OR
amdradeon_rx_7600sMatch-
OR
amdradeon_rx_7700_xtMatch-
OR
amdradeon_rx_7700sMatch-
OR
amdradeon_rx_7800_xtMatch-
OR
amdradeon_rx_7900_greMatch-
OR
amdradeon_rx_7900_xtMatch-
OR
amdradeon_rx_7900_xtxMatch-
OR
amdradeon_rx_7900mMatch-
AND
amdradeon_softwareRange<23.9.2adrenalin
Node
amdradeon_pro_w5500Match-
OR
amdradeon_pro_w5700Match-
OR
amdradeon_pro_w6300Match-
OR
amdradeon_pro_w6400Match-
OR
amdradeon_pro_w6600Match-
OR
amdradeon_pro_w6800Match-
OR
amdradeon_pro_w7500Match-
OR
amdradeon_pro_w7600Match-
OR
amdradeon_pro_w7800Match-
OR
amdradeon_pro_w7900Match-
AND
amdradeon_softwareRange<23.q4pro
Node
amdryzen_3_7320uMatch-
OR
amdryzen_3_7335uMatch-
OR
amdryzen_3_7440uMatch-
OR
amdryzen_5_6600hMatch-
OR
amdryzen_5_6600hsMatch-
OR
amdryzen_5_6600uMatch-
OR
amdryzen_5_7500fMatch-
OR
amdryzen_5_7520uMatch-
OR
amdryzen_5_7535hsMatch-
OR
amdryzen_5_7535uMatch-
OR
amdryzen_5_7540uMatch-
OR
amdryzen_5_7600Match-
OR
amdryzen_5_7600xMatch-
OR
amdryzen_5_7640hMatch-
OR
amdryzen_5_7640uMatch-
OR
amdryzen_5_7645hxMatch-
OR
amdryzen_5_pro_7640hsMatch-
OR
amdryzen_5_pro_7645Match-
OR
amdryzen_7_6800hMatch-
OR
amdryzen_7_6800hsMatch-
OR
amdryzen_7_6800uMatch-
OR
amdryzen_7_7700Match-
OR
amdryzen_7_7700xMatch-
OR
amdryzen_7_7735hsMatch-
OR
amdryzen_7_7735uMatch-
OR
amdryzen_7_7736uMatch-
OR
amdryzen_7_7745hxMatch-
OR
amdryzen_7_7800x3dMatch-
OR
amdryzen_7_7840hMatch-
OR
amdryzen_7_7840uMatch-
OR
amdryzen_7_pro_7745Match-
OR
amdryzen_7_pro_7840hsMatch-
OR
amdryzen_9_6900hsMatch-
OR
amdryzen_9_6900hxMatch-
OR
amdryzen_9_6980hsMatch-
OR
amdryzen_9_6980hxMatch-
OR
amdryzen_9_7845hxMatch-
OR
amdryzen_9_7900Match-
OR
amdryzen_9_7900xMatch-
OR
amdryzen_9_7900x3dMatch-
OR
amdryzen_9_7940hMatch-
OR
amdryzen_9_7945hxMatch-
OR
amdryzen_9_7945hx3dMatch-
OR
amdryzen_9_7950xMatch-
OR
amdryzen_9_7950x3dMatch-
OR
amdryzen_9_pro_7940hsMatch-
OR
amdryzen_9_pro_7945Match-
AND
amdradeon_softwareRange<23.9.2adrenalin
OR
amdradeon_softwareRange<23.q4pro

Related

cve 1
vulnrichment 1
redhatcve 1
prion 1
cvelist 1
amd 1
thn 1
cve
cve
CVE-2023-20598
2023-10-17 14:15:09
vulnrichment
vulnrichment
CVE-2023-20598
2023-10-17 13:26:21
redhatcve
redhatcve
CVE-2023-20598
2023-10-26 01:43:17
prion
prion
Input validation
2023-10-17 14:15:00
cvelist
cvelist
CVE-2023-20598
2023-10-17 13:26:21
amd
amd
AMD Radeon™ Graphics Kernel Driver Privilege Management Vulnerability
2023-10-16 00:00:00
thn
thn
Researchers Find 34 Windows Drivers Vulnerable to Full Device Takeover
2023-11-02 08:59:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for NVD:CVE-2023-20598
cve1vulnrichment1redhatcve1prion1cvelist1amd1thn1