CVE-2024-21946

CVSS 7.3 · High EPSS 0.10% · P27 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-21946

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Incorrect default permissions in the AMD RyzenTM Master Utility installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

缺省权限不正确

Source: NVD (National Vulnerability Database)

Vulnerability Title

AMD Ryzen Master 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AMD Ryzen Master是美国超威半导体（AMD）公司的一款用于管理和调整 AMD Ryzen 处理器性能的软件工具。 AMD Ryzen Master存在安全漏洞，该漏洞源于默认权限不正确。攻击者利用该漏洞可以实现权限提升，从而可能导致任意代码执行。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
AMD	AMD Ryzen Master Utility for Overclocking Control	0 ~ 2.13.1.3097	-

II. Public POCs for CVE-2024-21946

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-21946

请登录查看更多情报信息。

Same Patch Batch · AMD · 2024-11-12 · 11 CVEs total

CVE-2024-21976	8.8 HIGH	AMD NPU driver 安全漏洞
CVE-2024-21975	8.8 HIGH	AMD NPU driver 安全漏洞
CVE-2024-21974	8.8 HIGH	AMD NPU driver 安全漏洞
CVE-2024-21958	7.3 HIGH	AMD Provisioning Console 安全漏洞
CVE-2024-21957	7.3 HIGH	AMD Management Console 安全漏洞
CVE-2024-21945	7.3 HIGH	AMD Ryzen Master 安全漏洞
CVE-2024-21939	7.3 HIGH	AMD Cloud Manageability Service 安全漏洞
CVE-2024-21938	7.3 HIGH	AMD Management Plugin 安全漏洞
CVE-2024-21937	7.3 HIGH	AMD HIP SDK 安全漏洞
CVE-2024-21949	5.5 MEDIUM	AMD NPU driver 安全漏洞

IV. Related Vulnerabilities

Same vendor: AMD

Same weakness: CWE-276

V. Comments for CVE-2024-21946

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-21946

I. Basic Information for CVE-2024-21946

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-21946

III. Intelligence Information for CVE-2024-21946

Same Patch Batch · AMD · 2024-11-12 · 11 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2024-21946

Leave a comment