CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-20561 –
https://notcve.org/view.php?id=CVE-2023-20561
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD μProf may allow an authenticated user to send an arbitrary address potentially resulting in a Windows crash leading to denial of service. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7003 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-20556 –
https://notcve.org/view.php?id=CVE-2023-20556
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD μProf may allow an authenticated user to send an arbitrary buffer potentially resulting in a Windows crash leading to denial of service. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7003 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2CVE-2023-20562 –
https://notcve.org/view.php?id=CVE-2023-20562
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution. • https://github.com/zeze-zeze/HITCON-2023-Demo-CVE-2023-20562 https://github.com/passwa11/HITCON-2023-Demo-CVE-2023-20562 https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7003 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-23831
https://notcve.org/view.php?id=CVE-2022-23831
Insufficient validation of the IOCTL input buffer in AMD μProf may allow an attacker to send an arbitrary buffer leading to a potential Windows kernel crash resulting in denial of service. Una validación insuficiente del búfer de entrada IOCTL en AMD ?Prof puede permitir que un atacante envíe un búfer arbitrario que provoque una posible falla del kernel de Windows que provoque una denegación de servicio. • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1046 •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-27674
https://notcve.org/view.php?id=CVE-2022-27674
Insufficient validation in the IOCTL input/output buffer in AMD μProf may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service. Una validación insuficiente en el búfer de entrada/salida IOCTL en AMD ?Prof puede permitir a un atacante eludir las comprobaciones de límites, lo que podría provocar un fallo del kernel de Windows que provoque una denegación de servicio. • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1046 •