9740 matches found
CVE-2023-31324
A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...
GHSA-9F3F-WV7R-QC8R Pion DTLS's usage of random nonce generation with AES GCM ciphers risks leaking the authentication key
Impact Pion DTLS versions v1.0.0 through v3.0.10 use random nonce generation with AES GCM ciphers, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonce in a session and a "forbidden attack". Patches Upgrade to v3.1.1 or late...
Inadequate Encryption Strength
Overview Affected versions of this package are vulnerable to Inadequate Encryption Strength due to the use of the random nonce generation with AES GCM ciphers. An attacker can obtain the authentication key and spoof data by exploiting nonce reuse within a session. Remediation Upgrade...
Important: Red Hat Security Advisory: RHACS 4.9.3 security and bug fix update
Updated images are now available for Red Hat Advanced Cluster Security RHACS, which typically include new features, bug fixes, and/or security patches. See the release notes link in the references section for a description of the fixes and enhancements in this particular release...
CVE-2025-61969
Incorrect permission assignment in AMD µProf may allow a local user-privileged attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...
CVE-2025-61969
Incorrect permission assignment in AMD µProf may allow a local user-privileged attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...
CVE-2025-61969
Incorrect permission assignment in AMD µProf may allow a local user-privileged attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...
CVE-2023-20548
A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to corrupt memory resulting in loss of integrity, confidentiality, or availability...
CVE-2023-20548
A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to corrupt memory resulting in loss of integrity, confidentiality, or availability...
CVE-2023-20548
CVE-2023-20548 describes a TOCTOU race in the AMD Secure Processor (ASP) that could lead to memory corruption with impacts to integrity, confidentiality, and availability. Affected component is ASP; the underlying issue is a race condition between checks and usage that attackers could potentially...
CVE-2023-20514
The CVE describes an issue in the AMD Secure Processor (ASP) where improper handling of parameters could allow a privileged attacker to pass an arbitrary memory value to functions in the trusted execution environment, leading to arbitrary code execution. Affected: AMD Secure Processor / ASP compo...
CVE-2024-36324
The CVE-2024-36324 entry concerns the AMD Graphics Driver, where improper input validation could let an attacker supply a crafted pointer and achieve arbitrary code execution. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE lists) with a CVSS v3.1 base score of 8.8 (HIG...
CVE-2024-36316
The integer overflow vulnerability within AMD Graphics driver could allow an attacker to bypass size checks potentially resulting in a denial of service...
CVE-2025-48503
A DLL hijacking vulnerability in the AMD Software Installer could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution...
CVE-2025-48503
CVE-2025-48503 is described as a DLL hijacking vulnerability in the AMD Software Installer that could enable privilege escalation and potentially arbitrary code execution. The primary affected component is the AMD Software Installer (and related AMD graphics software) as noted in multiple feeds, ...
[SECURITY] Fedora 42 Update: rust-sevctl-0.6.2-6.fc42
Administrative utility for AMD SEV...
PT-2026-7590
Name of the Vulnerable Software and Affected Versions AMD Graphics Driver affected versions not specified Description A flaw exists in the AMD Graphics Driver due to improper input validation. This could allow an attacker to provide a crafted pointer, potentially resulting in arbitrary code...
AMD Graphics Driver 安全漏洞
AMD Graphics Driver is an integrated graphics driver developed by American semiconductor company AMD. There is a security vulnerability in AMD Graphics Driver, which stems from improper input validation. This vulnerability may allow local attackers to write beyond the bounds of the system,...
AMD Graphics Driver 安全漏洞
AMD Graphics Driver is an integrated graphics driver developed by American semiconductor company AMD. There is a security vulnerability in AMD Graphics Driver, which stems from integer overflow. This vulnerability may allow local attackers to perform out-of-bound read and write operations, thereb...
PT-2026-7632
Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS versions affected versions not specified Description A denial-of-service DoS condition exists in the Advanced DNS Security ADNS feature of Palo Alto Networks PAN-OS software. An unauthenticated attacker can exploit th...