支持本站 — 捐款将帮助我们持续运营

目标: 1000 元,已筹: 1000

100.0%
立即捐款
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2024-36355 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 (sleep) wake up, potentially resulting in arbitrary code execution.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
跨界内存写
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
AMD多款产品 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
AMD Ryzen和AMD EPYC都是美国超威半导体(AMD)公司的产品。AMD Ryzen是一款中央处理器(CPU)。AMD EPYC是一款高性能服务器处理器。 AMD多款产品存在安全漏洞,该漏洞源于输入验证不当,可能导致具有Ring0访问权限的攻击者写入SMRAM并修改S3唤醒执行流程,进而造成任意代码执行。以下产品受到影响:AMD EPYC™ 9004 Series Processors、AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors、
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
厂商产品影响版本CPE订阅
AMDAMD EPYC™ 9004 Series Processors GenoaPI 1.0.0.E -
AMDAMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors ChagallWSPI-sWRX8-1.0.0.B -
AMDAMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics CezannePI-FP6_1.0.1.1b -
AMDAMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors CastlePeakWSPI-sWRX8 1.0.0.G -
AMDAMD Ryzen™ Z1 Series Processors ComboAM5 1.1.0.3c / ComboAM5 1.2.0.3d -
AMDAMD Ryzen™ 9000 Series Desktop Processors ComboAM5 1.2.0.3d -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5 1.2.0.3d -
AMDAMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics PicassoPI-FP5_1.0.1.2c -
AMDAMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics ComboAM4v2PI 1.2.0.10 -
AMDAMD Ryzen™ 3000 Series Desktop Processors ComboAM4PI 1.0.0.10 -
AMDAMD Ryzen™ 8000 Series Desktop Processors ComboAM5 1.1.0.3c -
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7_1.2.0.0c -
AMDAMD Ryzen™ Threadripper™ 7000 processor StormPeakPI-SP6 1.1.0.0i -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series processors StormPeakPI-SP6 1.0.0.1k / StormPeakPI-SP6 1.1.0.0i -
AMDAMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7_1.2.0.0c -
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics RenoirPI-FP6 1.0.0.Eb -
AMDAMD Ryzen™ 6000 Series Processors with Radeon™ Graphics RembrandtPI-FP7_1.0.0.Bb -
AMDAMD Ryzen™ 8000 Series Desktop ComboAM5 1.2.0.3d -
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ Graphics MendocinoPI-FT6_1.0.0.7b -
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics DragonRangeFL1_1.0.0.3g -
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics PicassoPI-FP5_1.0.1.2c -
AMDAMD Ryzen™ 4000 Series Desktop Processors ComboAM4v2PI 1.2.0.10 -
AMDAMD Ryzen™ 5000 Series Desktop Processors ComboAM4v2PI 1.2.0.10 -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors StormPeakPI-SP6 1.1.0.0i -
AMDAMD Ryzen™ Z2 Series Processors PhoenixPI-FP8-FP7_1.2.0.0c -
AMDAMD Ryzen™ Z2 Series Processors Go RembrandtPI-FP7_1.0.0.Bb -
AMDAMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Genoa") EmbGenoaPI-SP5 1.0.0.B -
AMDAMD Ryzen™ Embedded R1000 Series Processors EmbeddedPI-FP5 1211 -
AMDAMD Ryzen™ Embedded R2000 Series Processors EmbeddedR2KPI-FP5 1006 -
AMDAMD Ryzen™ Embedded 5000 Series Processors EmbAM4PI 1008 -
AMDAMD Ryzen™ Embedded 7000 Series Processors EmbeddedAM5PI 1.0.0.4​ -
AMDAMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge") EmbeddedPI-FP5 1211 -
AMDAMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso") EmbeddedPI-FP5 1211 -
AMDAMD Ryzen™ Embedded V2000 Series Processors EmbeddedPI-FP6_1.0.0.B -
AMDAMD Ryzen™ Embedded V3000 Series Processors Embedded-PI_FP7r2 100F -
AMDAMD Ryzen™ Embedded 8000 Series Processors EmbeddedPhoenixPI-FP7r2_1.0.0.2 -
二、漏洞 CVE-2024-36355 的公开POC
#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC
三、漏洞 CVE-2024-36355 的情报信息
Please 登录 to view more intelligence information
四、漏洞 CVE-2024-36355 的评论

暂无评论

发表评论