CVE-2023-31322

Summary

Type confusion in the ASP could allow an attacker to pass a malformed argument to the Reliability, Availability, and Serviceability trusted application (RAS TA) potentially leading to a read or write to shared memory resulting in loss of confidentiality, integrity, or availability.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.6.1 (24.10.21.01unaffected
AMD-AMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: PRO Edition 24.Q2 (24.10.20)unaffected

Weaknesses

  • CWE-843: CWE-843 Access of Resource Using Incompatible Type (‘Type Confusion’)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References