CVE-2023-31320 - Vulnerability Details

Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.06639.

Key SSVC decision points have not yet been added.

Vendors	Products
Amd	Radeon Pro Vega 56 Radeon Pro Vega 56 Firmware Radeon Pro Vega 64 Radeon Pro Vega 64 Firmware Radeon Pro W5500 Radeon Pro W5500x Radeon Pro W5700 Radeon Pro W5700x Radeon Pro W6300 Radeon Pro W6300m Radeon Pro W6400 Radeon Pro W6500m Radeon Pro W6600 Radeon Pro W6600m Radeon Pro W6600x Radeon Pro W6800 Radeon Pro W6800x Radeon Pro W6800x Duo Radeon Pro W6900x Radeon Pro W7500 Radeon Pro W7600 Radeon Pro W7800 Radeon Rx 5300 Radeon Rx 5300 Xt Radeon Rx 5300m Radeon Rx 5500 Radeon Rx 5500 Xt Radeon Rx 5500m Radeon Rx 5600 Radeon Rx 5600 Xt Radeon Rx 5600m Radeon Rx 5700 Radeon Rx 5700 Xt Radeon Rx 5700m Radeon Rx 6300m Radeon Rx 6400 Radeon Rx 6450m Radeon Rx 6500 Xt Radeon Rx 6500m Radeon Rx 6550m Radeon Rx 6550s Radeon Rx 6600 Radeon Rx 6600 Xt Radeon Rx 6600m Radeon Rx 6600s Radeon Rx 6650 Xt Radeon Rx 6650m Radeon Rx 6650m Xt Radeon Rx 6700 Radeon Rx 6700 Xt Radeon Rx 6700m Radeon Rx 6700s Radeon Rx 6800 Radeon Rx 6800 Xt Radeon Rx 6800m Radeon Rx 6800s Radeon Rx 6850m Xt Radeon Rx 6900 Xt Radeon Rx 6950 Xt Radeon Rx 7600 Radeon Rx 7600m Radeon Rx 7600m Xt Radeon Rx 7600s Radeon Rx 7700 Xt Radeon Rx 7700s Radeon Rx 7800 Xt Radeon Rx 7900 Gre Radeon Rx 7900 Xt Radeon Rx 7900 Xtx Radeon Rx 7900m Radeon Rx Vega 56 Radeon Rx Vega 56 Firmware Radeon Rx Vega 64 Radeon Rx Vega 64 Firmware Radeon Software Ryzen 3 3015ce Ryzen 3 3015e Ryzen 3 4100 Ryzen 3 4300g Ryzen 3 4300ge Ryzen 3 4300u Ryzen 3 5300g Ryzen 3 5300ge Ryzen 3 5300u Ryzen 5 4500 Ryzen 5 4500u Ryzen 5 4600g Ryzen 5 4600ge Ryzen 5 4600h Ryzen 5 4600hs Ryzen 5 4600u Ryzen 5 4680u Ryzen 5 5500h Ryzen 5 5500u Ryzen 5 5600g Ryzen 5 5600ge Ryzen 5 Pro 3200g Ryzen 5 Pro 3200ge Ryzen 5 Pro 3350g Ryzen 5 Pro 3350ge Ryzen 5 Pro 3400g Ryzen 5 Pro 3400ge Ryzen 7 4700g Ryzen 7 4700ge Ryzen 7 4700u Ryzen 7 4800h Ryzen 7 4800hs Ryzen 7 4980u Ryzen 7 5700g Ryzen 7 5700ge Ryzen 7 5700u Ryzen 9 4900h Ryzen 9 4900hs

Configuration 1 [-]

AND

cpe:2.3:a:amd:radeon_software:*:*:*:*:adrenalin:*:*:*

OR	cpe:2.3:h:amd:radeon_rx_5300:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6400:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6450m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6550m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6550s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6850m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6900_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6950_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7600m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7600s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7700s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7800_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7900_gre:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7900_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7900_xtx:-:::::::*
	cpe:2.3:h:amd:radeon_rx_7900m:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:amd:radeon_software:*:*:*:*:pro:*:*:*

OR	cpe:2.3:h:amd:radeon_pro_w5500:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5500x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6300:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6300m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6400:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6500m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6900x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w7500:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w7600:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w7800:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_56_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_56:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_64_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_64:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:amd:radeon_pro_vega_56_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_pro_vega_56:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:amd:radeon_pro_vega_64_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_pro_vega_64:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

OR	cpe:2.3:a:amd:radeon_software:::::adrenalin:::*
	cpe:2.3:a:amd:radeon_software:::::pro:::*

OR	cpe:2.3:h:amd:ryzen_3_3015ce:-:::::::*
	cpe:2.3:h:amd:ryzen_3_3015e:-:::::::*
	cpe:2.3:h:amd:ryzen_3_4100:-:::::::*
	cpe:2.3:h:amd:ryzen_3_4300g:-:::::::*
	cpe:2.3:h:amd:ryzen_3_4300ge:-:::::::*
	cpe:2.3:h:amd:ryzen_3_4300u:-:::::::*
	cpe:2.3:h:amd:ryzen_3_5300g:-:::::::*
	cpe:2.3:h:amd:ryzen_3_5300ge:-:::::::*
	cpe:2.3:h:amd:ryzen_3_5300u:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4500:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4500u:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4600g:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4600ge:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4600h:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4600hs:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4600u:-:::::::*
	cpe:2.3:h:amd:ryzen_5_4680u:-:::::::*
	cpe:2.3:h:amd:ryzen_5_5500h:-:::::::*
	cpe:2.3:h:amd:ryzen_5_5500u:-:::::::*
	cpe:2.3:h:amd:ryzen_5_5600g:-:::::::*
	cpe:2.3:h:amd:ryzen_5_5600ge:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3200g:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3200ge:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3350g:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3350ge:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3400g:-:::::::*
	cpe:2.3:h:amd:ryzen_5_pro_3400ge:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4700g:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4700ge:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4700u:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4800h:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4800hs:-:::::::*
	cpe:2.3:h:amd:ryzen_7_4980u:-:::::::*
	cpe:2.3:h:amd:ryzen_7_5700g:-:::::::*
	cpe:2.3:h:amd:ryzen_7_5700ge:-:::::::*
	cpe:2.3:h:amd:ryzen_7_5700u:-:::::::*
	cpe:2.3:h:amd:ryzen_9_4900h:-:::::::*
	cpe:2.3:h:amd:ryzen_9_4900hs:-:::::::*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2023-35631	Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003

History

No history.

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2023-11-14T18:51:43.415Z

Updated: 2024-08-02T14:53:30.757Z

Reserved: 2023-04-27T15:25:41.423Z

Link: CVE-2023-31320

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-11-14T19:15:25.070

Modified: 2024-11-21T08:01:46.340

Link: CVE-2023-31320

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object