Vulnerabilities > AMD > AMD Uprof

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-20556 Unspecified vulnerability in AMD Uprof 3.4.494/3.4.502
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD µProf may allow an authenticated user to send an arbitrary buffer potentially resulting in a Windows crash leading to denial of service.
local
low complexity
amd
5.5
2023-08-08 CVE-2023-20561 Unspecified vulnerability in AMD Uprof 3.4.494/3.4.502
Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD µProf may allow an authenticated user to send an arbitrary address potentially resulting in a Windows crash leading to denial of service.
local
low complexity
amd
5.5
2023-08-08 CVE-2023-20562 Unspecified vulnerability in AMD Uprof 3.4.494/3.4.502
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution.
local
low complexity
amd
7.8
2022-11-09 CVE-2022-23831 Unspecified vulnerability in AMD Uprof 3.4.494/3.4.502
Insufficient validation of the IOCTL input buffer in AMD µProf may allow an attacker to send an arbitrary buffer leading to a potential Windows kernel crash resulting in denial of service.
network
low complexity
amd
7.5
2022-11-09 CVE-2022-27674 Unspecified vulnerability in AMD Uprof 3.4.494/3.4.502
Insufficient validation in the IOCTL input/output buffer in AMD µProf may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service.
network
low complexity
amd
7.5
2021-12-01 CVE-2021-26334 Unspecified vulnerability in AMD Uprof 3.4.494
The AMDPowerProfiler.sys driver of AMD µProf tool may allow lower privileged users to access MSRs in kernel which may lead to privilege escalation and ring-0 code execution by the lower privileged user.
network
low complexity
amd
critical
9.9