CVE-2023-20560 –
https://notcve.org/view.php?id=CVE-2023-20560
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may allow a privileged attacker to provide a null value potentially resulting in a Windows crash leading to denial of service. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004 • CWE-20: Improper Input Validation •
CVE-2023-20564 –
https://notcve.org/view.php?id=CVE-2023-20564
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7004 • CWE-20: Improper Input Validation •
CVE-2022-27677
https://notcve.org/view.php?id=CVE-2022-27677
Failure to validate privileges during installation of AMD Ryzen™ Master may allow an attacker with low privileges to modify files potentially leading to privilege escalation and code execution by the lower privileged user. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1052 • CWE-269: Improper Privilege Management •
CVE-2020-12928
https://notcve.org/view.php?id=CVE-2020-12928
A vulnerability in a dynamically loaded AMD driver in AMD Ryzen Master V15 may allow any authenticated user to escalate privileges to NT authority system. Una vulnerabilidad en un controlador AMD cargado dinámicamente en AMD Ryzen Master versión V15, puede permitir a cualquier usuario autenticado escalar privilegios a NT authority system • https://www.amd.com/en/corporate/product-security • CWE-749: Exposed Dangerous Method or Function •