Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-31330

CVSS 2.5 · Low EPSS 0.01% · P2
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-31330

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An out-of-bounds read in the ASP could allow a privileged attacker with access to a malicious bootloader to potentially read sensitive memory resulting in loss of confidentiality.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)
Vulnerability Title
AMD Embedded Processors和AMD Client Processor 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD Embedded Processors和AMD Client Processor都是美国超威半导体(AMD)公司的产品。AMD Embedded Processors是一系列嵌入式高性能 GPU。AMD Client Processor是面向客户端设备(如个人电脑、笔记本电脑等)的处理器。 AMD Embedded Processors和AMD Client Processor存在安全漏洞,该漏洞源于存在越界读取,可能导致特权攻击者读取敏感内存,造成机密性损失。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
AMDAMD Ryzen™ Threadripper™ 3000 Processors CastlePeakPI-SP3r3 1.0.0.C -
AMDAMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors chagallwspi_swrx8_1.0.0.9 -
AMDAMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors CastlePeakWSPI-sWRX8 1.0.0.E -
AMDAMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors chagallwspi_swrx8_1.0.0.9 -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors StrormPeakPI-SP6_1.0.0.1e -
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics Picasso-FP5_1.0.1.1 -
AMDAMD Ryzen™ 5000 Series Desktop Processors ComboAM4v2PI_1.2.0.CA -
AMDAMD Ryzen™ 3000 Series Desktop Processors ComboAM4PI_1.0.0.E -
AMDAMD Ryzen™ 8000 Series Desktop Processors ComboAM5 1.1.0.2 -
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7_1.1.0.1b -
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics Renoir-FP6_1.0.0.Ea -
AMDAMD Ryzen™ 6000 Series Processors with Radeon™ Graphics Rembrandt-FP7_1.0.0.A -
AMDAMD Ryzen™ Threadripper™ 7000 Processors StrormPeakPI-SP6_1.1.0.0c -
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ Graphics MendocinoPI-FT6_1.0.0.6 -
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics DragonRangeFL1PI 1.0.0.3C -
AMDAMD Ryzen™ 7035 Series Processors with Radeon™ Graphics Rembrandt-FP7_1.0.0.A -
AMDAMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics Cezanne-FP6_1.0.1.1a -
AMDAMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics Cezanne-FP6_1.0.1.1a -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5 1.1.0.2 -
AMDAMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics ComboAM4v2PI_1.2.0.CA -
AMDAMD Ryzen™ 3000 Series Desktop Processors ComboAM4v2PI_1.2.0.CA -
AMDAMD Ryzen™ 4000 Series Desktop Processors ComboAM4v2PI_1.2.0.CA -
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics Picasso-FP5_1.0.1.1 -

II. Public POCs for CVE-2023-31330

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-31330

登录查看更多情报信息。

Same Patch Batch · AMD · 2025-09-06 · 23 CVEs total

CVE-2024-363428.8 HIGHAMD Graphics Driver和AMD Embedded Processors 安全漏洞
CVE-2023-313228.7 HIGHAMD Graphics Driver 安全漏洞
CVE-2024-363528.4 HIGHAMD Graphics Driver 安全漏洞
CVE-2024-363268.4 HIGHAMD Client Processor 安全漏洞
CVE-2024-363547.5 HIGHAMD多款产品 安全漏洞
CVE-2024-219477.5 HIGHAMD Embedded Processors和AMD Client Processor 安全漏洞
CVE-2025-00327.2 HIGHAMD多款产品 安全漏洞
CVE-2023-313257.2 HIGHAMD Graphics Driver和AMD Client Processor 安全漏洞
CVE-2025-00106.1 MEDIUMAMD Graphics Driver 安全漏洞
CVE-2024-363466.0 MEDIUMAMD Graphics Driver 安全漏洞
CVE-2025-00095.5 MEDIUMAMD Graphics Driver 安全漏洞
CVE-2023-313515.3 MEDIUMAMD Embedded Processors和AMD Server Processor 安全漏洞
CVE-2025-00344.7 MEDIUMAMD Graphics Driver 安全漏洞
CVE-2024-219704.4 MEDIUMAMD Embedded Processors和AMD Client Processor 安全漏洞
CVE-2021-263774.1 MEDIUMAMD多款产品 安全漏洞
CVE-2023-313653.9 LOWAMD Graphics Driver 安全漏洞
CVE-2025-00113.3 LOWAMD Graphics Driver 安全漏洞
CVE-2023-313063.3 LOWAMD Graphics Driver 安全漏洞
CVE-2023-205163.3 LOWAMD Graphics Driver 安全漏洞
CVE-2024-363313.2 LOWAMD Embedded Processors和AMD Server Processor 安全漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: AMD Ryzen™ Threadripper™ 3000 Processors
Same vendor: AMD
Same weakness: CWE-125

V. Comments for CVE-2023-31330

No comments yet

Leave a comment