CVE-2023-31341

Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:amd:uprof:*:*:*:*:*:linux:*:*
cpe:2.3:a:amd:uprof:*:*:*:*:*:freebsd:*:*
cpe:2.3:a:amd:uprof:*:*:*:*:*:windows:*:*

History

26 Feb 2025, 07:14

Type Values Removed Values Added
Summary (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD ?Prof may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service. (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.

13 Dec 2024, 16:22

Type Values Removed Values Added
CWE NVD-CWE-noinfo
References () https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-9001 - () https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-9001 - Vendor Advisory
First Time Amd uprof
Amd
Summary (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service. (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD ?Prof may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.
CPE cpe:2.3:a:amd:uprof:*:*:*:*:*:windows:*:*
cpe:2.3:a:amd:uprof:*:*:*:*:*:linux:*:*
cpe:2.3:a:amd:uprof:*:*:*:*:*:freebsd:*:*

21 Nov 2024, 08:01

Type Values Removed Values Added
Summary
  • (es) Una validación insuficiente del búfer de entrada de control de entrada y salida (IOCTL) en AMD ?Prof puede permitir que un atacante autenticado provoque una escritura fuera de los límites, lo que podría causar un bloqueo del sistema operativo Windows® y, como resultado, una denegación de servicio.
Summary (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD ?Prof may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service. (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.

14 Aug 2024, 02:07

Type Values Removed Values Added
Summary (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service. (en) Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD ?Prof may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.

13 Aug 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-13 17:15

Updated : 2025-02-26 07:14


NVD link : CVE-2023-31341

Mitre link : CVE-2023-31341

CVE.ORG link : CVE-2023-31341


JSON object : View

Products Affected

amd

  • uprof
CWE
CWE-284

Improper Access Control

NVD-CWE-noinfo