Lucene search
K
AmdUprof

11 matches found

CVE
CVE
added 2024/08/13 4:57 p.m.56 views

CVE-2023-31366

CVE-2023-31366 affects AMD μProf: improper input validation could enable writing to an invalid address, potentially causing denial of service. The AMD μProf tool (Windows, Linux, FreeBSD) is the affected product. The issue is categorized as low severity by AMD (local access, low complexity, low p...

5.5CVSS4.2AI score0.0015EPSS
CVE
CVE
added 2024/08/13 4:57 p.m.55 views

CVE-2023-31341

Summary: CVE-2023-31341 affects AMD μProf. The issue is insufficient validation of the IOCTL input buffer, which can allow an authenticated attacker to cause an out-of-bounds write and potentially crash Windows, causing denial of service. Affected product: AMD μProf (Windows, Linux, FreeBSD varia...

7.3CVSS6.2AI score0.00134EPSS
CVE
CVE
added 2024/08/13 4:57 p.m.51 views

CVE-2023-31348

AMD μProf DLL hijacking (CVE-2023-31348) enables privilege escalation to arbitrary code execution via a DLL search order issue in the AMD μProf component. Affected product: AMD μProf on Windows, Linux, and FreeBSD. Underlying cause: DLL hijacking vulnerability described in AMD’s security bulletin...

7.8CVSS7.5AI score0.00182EPSS
CVE
CVE
added 2024/08/13 4:57 p.m.48 views

CVE-2023-31349

AMD μProf is affected by CVE-2023-31349: incorrect default permissions in the μProf installation directory may allow local privilege escalation and potentially arbitrary code execution. Affected product: AMD μProf on Windows, Linux, and FreeBSD. Root cause: misconfigured installation-directory pe...

7.8CVSS7.5AI score0.00157EPSS
CVE
CVE
added 2025/05/13 2:4 p.m.48 views

CVE-2024-36340

AMD uProf exposes CVE-2024-36340 a local junction-point vulnerability that allows a low-privileged attacker to create junction points, potentially triggering arbitrary file deletion or disclosure. The affected software is AMD uProf (tools for performance analysis on Windows, Linux and FreeBSD). R...

6.6CVSS6.8AI score0.00136EPSS
CVE
CVE
added 2026/06/09 5:34 p.m.20 views

CVE-2026-28237

AMD uProf exposes an issue described as unrestricted resource allocation that can be exploited to exhaust system resources, potentially impacting availability. The reports identify the affected component as AMD uProf, with local attack vector and low attack complexity, resulting in high impact on...

6.8CVSS5.4AI score0.00098EPSS
CVE
CVE
added 2025/11/24 9:0 p.m.18 views

CVE-2025-48511

AMD uProf (μProf) contains an improper input validation vulnerability that can allow a local attacker to write to an arbitrary physical address, potentially causing a crash or denial of service. Affected environments include Windows, Linux, and FreeBSD per CNVD/CVEs. The root cause and impact are...

5.5CVSS6.2AI score0.00097EPSS
CVE
CVE
added 2026/06/09 5:33 p.m.17 views

CVE-2026-0466

CVE-2026-0466 involves AMD uProf with improper access control. A local user may write to the kernel-shared memory section, potentially causing a crash or denial of service. Documents reference AMD’s security bulletin AMD-SB-9025, but provide no version-specific details or remediation steps. No ex...

6.8CVSS5.5AI score0.001EPSS
CVE
CVE
added 2025/11/24 8:56 p.m.15 views

CVE-2025-48510

CVE-2025-48510 concerns AMD uProf, where an improper return value mishandling in a component of the AMD μProf tool can allow a local attacker to bypass KSLR, potentially compromising confidentiality or availability. The publicly cited sources describe a local-access vulnerability affecting uProf;...

7.1CVSS6.2AI score0.0011EPSS
CVE
CVE
added 2025/11/21 7:7 p.m.14 views

CVE-2025-48502

CVE-2025-48502 concerns the AMD μProf tool. Public documentation in multiple connected sources confirms an underlying issue of improper input validation within μProf, which can allow a local attacker to overwrite MSR registers. This action could lead to a crash or denial of service. The vulnerabi...

5.5CVSS6.2AI score0.00097EPSS
CVE
CVE
added 2025/11/24 9:3 p.m.10 views

CVE-2025-29933

CVE-2025-29933 corresponds to an AMD uProf vulnerability caused by improper input validation, enabling a local attacker to perform an out-of-bounds write and potentially crash or deny service. Descriptions across multiple sources consistently identify AMD uProf as the affected software and cite a...

5.5CVSS6.2AI score0.00097EPSS