Vulnerabilities > AMD > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-12 | CVE-2024-21937 | Incorrect Default Permissions vulnerability in AMD Radeon Software and Radeon Software for HIP Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | 7.8 |
| 2024-11-12 | CVE-2024-21938 | Incorrect Default Permissions vulnerability in AMD Management Plugin for Sccm Incorrect default permissions in the AMD Management Plugin for the Microsoft® System Center Configuration Manager (SCCM) installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. | 7.8 |
| 2024-11-12 | CVE-2024-21939 | Incorrect Default Permissions vulnerability in AMD Cloud Manageability Service Incorrect default permissions in the AMD Cloud Manageability Service (ACMS) Software installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | 7.3 |
| 2024-11-12 | CVE-2024-21945 | Incorrect Default Permissions vulnerability in AMD Ryzen Master Monitoring Software Development KIT Incorrect default permissions in the AMD RyzenTM Master monitoring SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | 7.3 |
| 2024-11-12 | CVE-2024-21946 | Incorrect Default Permissions vulnerability in AMD Ryzen Master Utility for Overclocking Control Incorrect default permissions in the AMD RyzenTM Master Utility installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | 7.3 |
| 2024-11-12 | CVE-2024-21957 | Incorrect Default Permissions vulnerability in AMD Management Console Incorrect default permissions in the AMD Management Console installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. | 7.3 |
| 2024-11-12 | CVE-2024-21958 | Incorrect Default Permissions vulnerability in AMD Provisioning Console Incorrect default permissions in the AMD Provisioning Console installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. | 7.3 |
| 2024-11-12 | CVE-2024-21974 | Unspecified vulnerability in AMD Ryzen AI Software Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. | 7.8 |
| 2024-11-12 | CVE-2024-21975 | Unspecified vulnerability in AMD Ryzen AI Software Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution. | 7.8 |
| 2024-08-13 | CVE-2021-26344 | Out-of-bounds Write vulnerability in AMD products An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution. | 8.2 |