CVE-2023-31316

HIGH

AMD Ryzen 5000 Series Mobile - Memory Corruption

Title source: llm

Description

Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the trusted memory range (TMR) to change the execution flow of the Video Core Next (VCN) firmware potentially impacting confidentiality, integrity, or availability.

References (2)

Core 2

Core References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html

Scores

CVSS v4 7.1

EPSS 0.0001

EPSS Percentile 2.8%

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-1304

Status published

Products (18)

AMD/AMD Instinct™ MI210 ROCm 6.4

AMD/AMD Instinct™ MI250 ROCm 6.4

AMD/AMD Radeon™ PRO V620 Contact your AMD Customer Engineering representative

AMD/AMD Radeon™ PRO W6000 Series Graphics Products AMD Software: PRO Edition 25.Q4 (25.10.37.01)

AMD/AMD Radeon™ PRO W7000 Series Graphics Products AMD Software: PRO Edition 25.Q3.1 (25.10.32)

AMD/AMD Radeon™ RX 6000 Series Graphics Products AMD Software: Adrenalin Edition 25.12.1 (25.10.37.01)

AMD/AMD Radeon™ RX 7000 Series Graphics Products AMD Software: Adrenalin Edition 25.11.1 (25.20.29.01)

AMD/AMD Ryzen™ 4000 Series Desktop Processors ComboAM4v2 1.2.0.Ca

AMD/AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics Renoir-FP6 1.0.0.D

AMD/AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics ComboAM4v2 1.2.0.Ca

... and 8 more

Published May 15, 2026

Tracked Since May 15, 2026