Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 25 Sep 2025 19:30:00 +0000

Type Values Removed Values Added
Description Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values, potentially leading to loss of confidentiality. Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.
References

Tue, 04 Mar 2025 03:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 02 Mar 2025 17:45:00 +0000

Type Values Removed Values Added
Description No description is available for this CVE. Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values, potentially leading to loss of confidentiality.
Weaknesses CWE-459

Thu, 27 Feb 2025 02:00:00 +0000

Type Values Removed Values Added
Description No description is available for this CVE.
Title kernel: hw:amd Cross-Process GPU memory disclosure
Weaknesses CWE-416
References
Metrics threat_severity

None

cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N'}

threat_severity

Moderate


cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published:

Updated: 2025-09-25T19:24:49.891Z

Reserved: 2024-05-23T19:44:50.000Z

Link: CVE-2024-36353

cve-icon Vulnrichment

Updated: 2025-03-03T15:49:55.295Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-03-02T18:15:34.033

Modified: 2025-09-25T20:15:33.850

Link: CVE-2024-36353

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-02-25T00:00:00Z

Links: CVE-2024-36353 - Bugzilla

cve-icon OpenCVE Enrichment

No data.