CVE-2024-36311
Published: Feb 10, 2026
Modified: Feb 10, 2026
Description
A Time-of-check time-of-use (TOCTOU) race condition in the SMM communications buffer could allow a privileged attacker to bypass input validation and perform an out of bounds read or write, potentially resulting in loss of confidentiality, integrity, or availability.
| Vendor | Product | Versions |
|---|---|---|
AMD | AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics | unaffected DragonRangeFL1PI 1.0.0.3h |
AMD | AMD Ryzen™ 7000 Series Desktop Processors | unaffected ComboAM5PI 1.0.0.bunaffected ComboAM5PI 1.1.0.3dunaffected ComboAM5PI 1.2.0.3d |
AMD | AMD Ryzen™ 9000HX Series Mobile Processors | unaffected FireRangeFL1PI 1.0.0.0a |
AMD | AMD Ryzen™ 8000 Series Desktop Processors | unaffected ComboAM5PI 1.1.0.3dunaffected ComboAM5PI 1.2.0.3d |
AMD | AMD Ryzen™ 9000 Series Desktop Processors | unaffected ComboAM5PI 1.2.0.3d |
AMD | AMD Ryzen™ Embedded 7000 Series Processors | unaffected EmbeddedAM5PI 1.0.0.4 |
Weaknesses (CWE)
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now