CVE-2023-31309

Vulnerability Description

Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availability.

Related Weaknesses (CWE)

CWE-129

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html

FAQ

What is CVE-2023-31309?

CVE-2023-31309 is a documented vulnerability. Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a...

How severe is CVE-2023-31309?

CVSS scoring is not yet available for CVE-2023-31309. Check NVD for updates.

Is there a patch for CVE-2023-31309?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.