CVE-2024-36323
Affected Version Matrix 8
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AMD | AMD Instinct™ MI300A | ROCm 6.3 | unaffected |
| AMD | AMD Instinct™ MI300X | ROCm 6.3 | unaffected |
| AMD | AMD Instinct™ MI308X | ROC 6.3 | unaffected |
| AMD | AMD Instinct™ MI325X | ROC 6.3 | unaffected |
| AMD | AMD Radeon™ PRO W7000 Series Graphics Products | Radeon Software for Linux 24.20.3 | unaffected |
AMD Software: PRO Edition 25.Q3.1 (25.10.32) | unaffected | ||
| AMD | AMD Radeon™ RX 7000 Series Graphics Products | Radeon Software for Linux 24.20.3 | unaffected |
AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01) | unaffected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-36323
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine (VM) or a process to perform unauthorized access to the register space of the JPEG cores assigned a victim VM/process, potentially gaining arbitrary read/write access to the victim VM/process data.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| AMD | AMD Radeon™ RX 7000 Series Graphics Products | Radeon Software for Linux 24.20.3 | - | |
| AMD | AMD Radeon™ PRO W7000 Series Graphics Products | Radeon Software for Linux 24.20.3 | - | |
| AMD | AMD Instinct™ MI308X | ROC 6.3 | - | |
| AMD | AMD Instinct™ MI325X | ROC 6.3 | - | |
| AMD | AMD Instinct™ MI300X | ROCm 6.3 | - | |
| AMD | AMD Instinct™ MI300A | ROCm 6.3 | - |
II. Public POCs for CVE-2024-36323
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-36323
请登录查看更多情报信息。
Same Patch Batch · AMD · 2026-05-15 · 39 CVEs total
| CVE-2025-52540 | AMD PMF驱动越界写入致提权 | |
| CVE-2025-0040 | NXP JTAG-AXI访问控制漏洞 | |
| CVE-2024-21962 | AMD RAID驱动输入验证缺陷致提权与代码执行 | |
| CVE-2025-29935 | AMD PMF越界写入漏洞(影响代码执行) | |
| CVE-2025-29944 | AMD Sensor Fusion Hub 驱动缓冲区溢出致系统崩溃 | |
| CVE-2025-29938 | AMD PMF 版本未指定:未检查返回值致任意代码执行 | |
| CVE-2025-29937 | AMD PMF越界读取漏洞 | |
| CVE-2025-0028 | AMD PMF框架越界读写漏洞 | |
| CVE-2025-29936 | AMD平台管理框架输入验证缺陷导致权限提升 | |
| CVE-2025-48513 | AMD PMF未初始化资源漏洞 | |
| CVE-2021-26380 | Trusted OS驱动内存越界致完整性丢失 | |
| CVE-2025-48520 | AMD平台管理框架驱动越界读取漏洞 | |
| CVE-2025-48519 | AMD PMF驱动越界读写致提权漏洞 | |
| CVE-2025-0045 | AMD Secure Processor驱动输入验证漏洞致拒绝服务 | |
| CVE-2026-0432 | AMD芯片组驱动权限错误致提权 | |
| CVE-2025-48521 | ASP PCI驱动Use-After-Free漏洞致平台完整性丧失 | |
| CVE-2025-48512 | AMD GPIO控制器权限配置错误致提权 | |
| CVE-2024-36345 | AMD OverDrive SMM模块越界读取漏洞 | |
| CVE-2026-0438 | SMM handler执行非SMM内存代码导致远程代码执行漏洞 | |
| CVE-2023-31317 | AMD安全处理器越界内存读写致任意代码执行 |
Showing top 20 of 39 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2024-36323
No comments yet