Lucene search
Redhat.comRH:CVE-2023-20561HistoryAug 08, 2023 - 5:20 p.m.
CVE-2023-20561
2023-08-0817:20:57
redhat.com
access.redhat.com
8
amd
μprof
ioctl
input buffer
validation
windows
crash
denial of service
amd support
updates
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD μProf may allow an authenticated user to send an arbitrary address, potentially resulting in a Windows crash, leading to a denial of service.
Mitigation
Please contact AMD support for updates.
Related
prion
prion
Input validation
2023-08-08 18:15:00
nvd
nvd
CVE-2023-20561
2023-08-08 18:15:11
cvelist
cvelist
CVE-2023-20561
2023-08-08 17:14:53
cve
cve
CVE-2023-20561
2023-08-08 18:15:11
amd
amd
AMD μProf Security Bulletin
2023-08-08 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Related for RH:CVE-2023-20561