CVE-2024-36345
Possible ATT&CK Techniques 1AI
T1564.001 · Hidden Files and DirectoriesAffected Version Matrix 24
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AMD | AMD EPYC™ 4004 | ComboAM5PI 1.1.0.3d | unaffected |
| AMD | AMD EPYC™ 4005 | ComboAM5 1.2.0.3j | unaffected |
| AMD | AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics | RembrandtPI-FP7_1.0.0.Bg | unaffected |
| AMD | AMD Ryzen™ 7000 Series Desktop Processors | ComboAM5PI 1.0.0.e | unaffected |
ComboAM5PI 1.1.0.3g | unaffected | ||
ComboAM5PI 1.2.0.3j | unaffected | ||
| AMD | AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics | PhoenixPI-FP8-FP7_1.2.0.0f | unaffected |
| AMD | AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics | DragonRangeFL1_1.0.0.3l | unaffected |
| AMD | AMD Ryzen™ 8000 Series Desktop Processors | ComboAM5PI 1.1.0.3g | unaffected |
ComboAM5PI 1.2.0.3j | unaffected | ||
| AMD | AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics | PhoenixPI-FP8-FP7_1.2.0.0f | unaffected |
| AMD | AMD Ryzen™ 9000 Series Desktop Processors | ComboAM5PI 1.2.0.3j | unaffected |
ComboAM5PI 1.2.0.3j | unaffected | ||
| AMD | AMD Ryzen™ 9000HX Series Mobile Processors | FireRangeFL1PI 1.0.0.0f | unaffected |
| AMD | AMD Ryzen™ AI 300 Series Processors | StrixKrackanPI-FP8_1.1.0.0f | unaffected |
StrixKrackanPI-FP8_1.1.0.2e | unaffected | ||
| AMD | AMD Ryzen™ AI MAX | StrixHaloPI-FP11_1.0.0.2b | unaffected |
| AMD | AMD Ryzen™ Embedded 7000 Series Processors | EmbeddedAM5PI 1.0.0.7 | unaffected |
| AMD | AMD Ryzen™ Embedded 8000 Series Processors | EmbeddedPhoenixPI-FP7r2_1.0.0.4 | unaffected |
| AMD | AMD Ryzen™ Embedded 9000 Series Processors | EmbeddedAM5PI 1.0.0.7 | unaffected |
| AMD | AMD Ryzen™ Embedded V3000 Series Processors | Embedded-PI_FP7r2 1012 | unaffected |
| AMD | AMD Ryzen™ Threadripper™ 7000 Processors | StormPeakPI-SP6 1.1.0.0k | unaffected |
| AMD | AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors | StormPeakPI-SP6 1.0.0.1m | unaffected |
StormPeakPI-SP6 1.1.0.0k | unaffected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-36345
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an out-of-bounds read, potentially resulting in loss of confidentiality.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1274
Source: NVD (National Vulnerability Database)
Vulnerability Title
AMD OverDrive 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD OverDrive是美国超威半导体(AMD)公司的一款支持管理、配置CPU、GPU和RAM超频设置的工具。 AMD OverDrive存在安全漏洞,该漏洞源于输入验证不当,可能导致特权攻击者进行越界读取,从而造成机密性损失。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2024-36345
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-36345
请登录查看更多情报信息。
Vendor Advisories for CVE-2024-36345 (1)
Same Patch Batch · AMD · 2026-05-15 · 39 CVEs total
| CVE-2025-48513 | AMD Chipset 安全漏洞 | |
| CVE-2021-26380 | AMD Graphics Driver 输入验证错误漏洞 | |
| CVE-2025-0040 | AMD Processors 访问控制错误漏洞 | |
| CVE-2024-21962 | AMD RAID Driver 安全漏洞 | |
| CVE-2025-29935 | AMD Chipset 缓冲区错误漏洞 | |
| CVE-2025-29944 | AMD Ryzen 安全漏洞 | |
| CVE-2025-29938 | AMD多款产品 安全漏洞 | |
| CVE-2025-29937 | AMD Processors 缓冲区错误漏洞 | |
| CVE-2025-0028 | AMD Chipset 安全漏洞 | |
| CVE-2025-29936 | AMD多款产品 输入验证错误漏洞 | |
| CVE-2022-23826 | AMD Processors 安全漏洞 | |
| CVE-2025-52540 | AMD Chipset 缓冲区错误漏洞 | |
| CVE-2025-48520 | AMD多款产品 缓冲区错误漏洞 | |
| CVE-2025-48519 | AMD Chipset 缓冲区错误漏洞 | |
| CVE-2025-0045 | AMD Secure Processor 安全漏洞 | |
| CVE-2026-0432 | AMD Chipset 安全漏洞 | |
| CVE-2025-48521 | AMD Processors 资源管理错误漏洞 | |
| CVE-2025-48512 | AMD Chipset 安全漏洞 | |
| CVE-2026-0438 | AMD Chipset 安全漏洞 | |
| CVE-2023-31309 | AMD Radeon 输入验证错误漏洞 |
Showing top 20 of 39 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: AMD EPYC™ 4004
V. Comments for CVE-2024-36345
No comments yet