CVE-2024-36342 | THREATINT

Description

Improper input validation in the GPU driver could allow an attacker to exploit a heap overflow potentially resulting in arbitrary code execution.

PUBLISHED Reserved 2024-05-23 | Published 2025-09-06 | Updated 2025-09-23 | Assigner AMD

HIGH: 8.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-1285 Improper Validation of Specified Index, Position, or Offset in Input

Product status

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

Radeon Software for Linux 25.10.x

unaffected

Default status

affected

amd_chipset_software_7.06.02.123.exe , PSP driver version: 5.39.0.0

unaffected

Default status

affected

amd_chipset_software_7.06.02.123.exe , PSP driver version: 5.39.0.0

unaffected

Default status

affected

amd_chipset_software_7.06.02.123.exe , PSP driver version: 5.39.0.0

unaffected

Default status

affected

amd_chipset_software_7.06.02.123.exe , PSP driver version: 5.39.0.0

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

Radeon Software for Linux 25.10.1

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

ROCm 6.4

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

Credits

Reported through AMD Bug Bounty Program finder

References

www.amd.com/...es/product-security/bulletin/AMD-SB-6018.html

www.amd.com/...es/product-security/bulletin/AMD-SB-5007.html

cve.org (CVE-2024-36342)

nvd.nist.gov (CVE-2024-36342)

Download JSON

help @ threatint.eu