CVE-2023-31324
CVE-2023-31324
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to modify External Global Memory Interconnect Trusted Agent (XGMI TA) commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability.
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L
Affected products
AMD · AMD Instinct™ MI210AMD · AMD Instinct™ MI250AMD · AMD Instinct™ MI300AAMD · AMD Instinct™ MI300XAMD · AMD Radeon™ PRO W5000 Series Graphics ProductsAMD · AMD Radeon™ RX 5000 Series Graphics ProductsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →