CVE-2023-31306
Published: Sep 6, 2025
Modified: Sep 8, 2025
CVSS v3.1
3.3
Description
Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management (DPM) functions resulting in an out of bounds read and loss of availability.
| Vendor | Product | Versions |
|---|---|---|
AMD | AMD Radeon™ RX 5000 Series Graphics Products | unaffected No fix planned |
AMD | AMD Radeon™ PRO W5000 Series Graphics Products | unaffected No fix planned |
AMD | AMD Radeon™ RX 6000 Series Graphics Products | unaffected AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01) |
AMD | AMD Radeon™ PRO W6000 Series Graphics Products | unaffected AMD Software: PRO Edition 24.Q4 (24.20.30) |
AMD | AMD Radeon™ PRO V520 Graphics Products | unaffected Contact your AMD Customer Engineering representative |
AMD | AMD Radeon™ PRO V620 Graphics Products | unaffected Contact your AMD Customer Engineering representative |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now