Vulnerabilities in AMD
443 resultsCVE-2021-26367MEDIUMA malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address ranEPSS 0.2%CVE-2023-31349HIGHIncorrect default permissions in the AMD μProf installation directory could allow an attacker to achieve privilege escalation, potentially rEPSS 0.2%CVE-2023-20599HIGHImproper register access control in ASP may allow a privileged attacker to perform unauthorized access to ASP’s Crypto Co-Processor (CCP) reEPSS 0.2%CVE-2025-62626HIGHImproper handling of insufficient entropy in the AMD CPUs could allow a local attacker to influence the values returned by the RDSEED instruEPSS 0.2%CVE-2023-20581LOWImproper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory intEPSS 0.2%CVE-2021-26383HIGHInsufficient bounds checking in AMD TEE (Trusted Execution Environment) could allow an attacker with a compromised userspace to invoke a comEPSS 0.2%CVE-2023-20515MEDIUMImproper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leadingEPSS 0.2%CVE-2021-46746MEDIUMLack of stack protection exploit mechanisms in ASP Secure OS Trusted Execution Environment (TEE) may allow a privileged attacker with accessEPSS 0.2%CVE-2024-36354HIGHImproper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a sysEPSS 0.2%CVE-2024-36355HIGHImproper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 (sEPSS 0.2%CVE-2023-31307LOWImproper validation of array index in Power Management Firmware (PMFW) may allow a privileged attacker to cause an out-of-bounds memory readEPSS 0.2%CVE-2024-36316MEDIUMThe integer overflow vulnerability within AMD Graphics driver could allow an attacker to bypass size checks potentially resulting in a deniaEPSS 0.2%CVE-2023-31304LOWImproper input validation in SMU may allow an attacker with privileges and a compromised physical function (PF) to modify the PCIe® lanEPSS 0.2%CVE-2023-31366LOWImproper input validation in AMD μProf could allow an attacker to perform a write to an invalid address, potentially resulting in denial of EPSS 0.1%CVE-2025-48508MEDIUMImproper Hardware reset flow logic in the GPU GFX Hardware IP block could allow a privileged attacker in a guest virtual machine to control EPSS 0.1%CVE-2024-36336HIGHInteger overflow within the AMD NPU Driver could allow a local attacker to write out of bounds, potentially leading to a loss of confidentiaEPSS 0.1%CVE-2024-21960HIGHIncorrect default permissions in the AMD Optimizing CPU Libraries (AOCL) installation directory could allow an attacker to achieve privilegeEPSS 0.1%CVE-2024-36339HIGHA DLL hijacking vulnerability in the AMD Optimizing CPU Libraries could allow an attacker to achieve privilege escalation, potentially resulEPSS 0.1%CVE-2024-36337HIGHInteger overflow within AMD NPU Driver could allow a local attacker to write out of bounds, potentially leading to loss of confidentiality, EPSS 0.1%CVE-2025-52541HIGHA DLL hijacking vulnerability in Vivado could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary codEPSS 0.1%