Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.
References
Link | Resource |
---|---|
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003 | Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00971.html | Vendor Advisory |
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003 | Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00971.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
History
21 Nov 2024, 07:41
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003 - Vendor Advisory | |
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00971.html - Vendor Advisory |
27 Nov 2023, 18:53
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-14 19:15
Updated : 2024-11-21 07:41
NVD link : CVE-2023-20567
Mitre link : CVE-2023-20567
CVE.ORG link : CVE-2023-20567
JSON object : View
Products Affected
amd
- ryzen_3_4100
- radeon_rx_6600m
- radeon_rx_7600
- radeon_rx_7900m
- ryzen_5_4600u
- radeon_rx_6500_xt
- radeon_pro_w6400
- ryzen_5_pro_3400ge
- radeon_rx_5600
- radeon_rx_5300
- ryzen_3_3015ce
- radeon_rx_6400
- ryzen_3_5300g
- ryzen_5_pro_3400g
- radeon_rx_7600m
- radeon_rx_7600m_xt
- ryzen_7_4700g
- ryzen_7_5700ge
- radeon_pro_w6500m
- radeon_pro_vega_56
- ryzen_5_4500u
- radeon_rx_6800_xt
- radeon_rx_6850m_xt
- ryzen_7_4980u
- ryzen_5_pro_3200ge
- radeon_pro_w5500x
- radeon_pro_w7600
- radeon_pro_vega_64_firmware
- radeon_pro_w6600x
- ryzen_5_4600ge
- radeon_rx_5700_xt
- radeon_pro_w6600m
- ryzen_3_4300g
- ryzen_5_4600h
- ryzen_3_3015e
- radeon_rx_6700
- radeon_pro_w6900x
- radeon_rx_vega_64_firmware
- ryzen_3_5300ge
- radeon_rx_7700_xt
- ryzen_5_4600hs
- radeon_rx_5500_xt
- ryzen_3_4300ge
- radeon_rx_5300m
- ryzen_9_4900h
- radeon_pro_w6800x
- radeon_rx_6650m
- radeon_rx_6300m
- ryzen_9_4900hs
- radeon_pro_vega_56_firmware
- ryzen_5_5500h
- radeon_pro_w6800
- radeon_rx_6800
- radeon_rx_7900_gre
- radeon_rx_6700s
- radeon_pro_w5500
- radeon_rx_6600s
- radeon_rx_6900_xt
- radeon_rx_7900_xtx
- radeon_pro_w5700
- radeon_rx_5500
- ryzen_5_4680u
- ryzen_5_4600g
- ryzen_7_4800h
- ryzen_7_5700g
- radeon_software
- radeon_rx_vega_64
- ryzen_5_pro_3200g
- ryzen_7_5700u
- radeon_rx_7800_xt
- radeon_pro_w6600
- radeon_rx_6650_xt
- radeon_rx_7900_xt
- ryzen_3_4300u
- ryzen_5_pro_3350ge
- radeon_pro_w7800
- radeon_rx_5500m
- radeon_rx_6450m
- radeon_pro_w6300m
- ryzen_5_4500
- ryzen_7_4700ge
- radeon_rx_6500m
- radeon_rx_6600_xt
- radeon_rx_6700m
- radeon_pro_vega_64
- radeon_rx_5600m
- radeon_rx_5700m
- radeon_rx_5700
- radeon_rx_vega_56
- radeon_rx_6600
- ryzen_5_5500u
- radeon_rx_6550m
- ryzen_3_5300u
- ryzen_5_5600g
- radeon_rx_7600s
- radeon_rx_6550s
- ryzen_7_4800hs
- radeon_pro_w6300
- ryzen_7_4700u
- ryzen_5_5600ge
- radeon_rx_vega_56_firmware
- radeon_rx_6650m_xt
- radeon_rx_6700_xt
- radeon_pro_w5700x
- radeon_rx_6800m
- radeon_pro_w6800x_duo
- radeon_rx_6800s
- ryzen_5_pro_3350g
- radeon_rx_6950_xt
- radeon_rx_5600_xt
- radeon_rx_5300_xt
- radeon_rx_7700s
- radeon_pro_w7500
intel
- nuc_kit_nuc8i7hnk
- core_i5-8305g
- radeon_rx_vega_m_firmware
- nuc_kit_nuc8i7hvk
- core_i7-8709g
- nuc_8_enthusiast_nuc8i7hvkva
- core_i7-8706g
- nuc_8_enthusiast_nuc8i7hvkvaw
- nuc_8_enthusiast_nuc8i7hnkqc
- core_i7-8705g
CWE
CWE-347
Improper Verification of Cryptographic Signature