CVE-2023-31348

CWE-427CWE-400Uncontrolled Resource Consumption3 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 61.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
AMD Μprof ToolAMD Uprof
Timeline
PublishedAug 13

Description

A DLL hijacking vulnerability in AMD μProf could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages2 packages

CVEListV5amd/μprof_toolμProf Tool3.4.494
NVDamd/uprof< 4.1.424+2

🔴Vulnerability Details

2
CVEList
CVE-2023-31348: A DLL hijacking vulnerability in AMD μProf could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution2024-08-13
GHSA
GHSA-9m5w-7xhr-393x: A DLL hijacking vulnerability in AMD μProf could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution2024-08-13