CVE-2024-36348 | AMD EPYC 7002 Processors UMIP Feature information disclosure

A vulnerability was found in AMD EPYC 7002 Processors, EPYC 7003 Processors, EPYC 9004 Processors, EPYC 8004 Processors, EPYC 4004 Processors, EPYC 9V64H Processor, Ryzen 5000 Desktop Processors, Ryzen 5000 Desktop Processor with Radeon Graphics, Ryzen 3000 Desktop Processors, Athlon 3000 Desktop Processors with Radeon Graphics, Ryzen 7000 Desktop Processors, Ryzen 4000 Desktop Processor with Radeon Graphics, Ryzen 8000 Processor with Radeon Graphics, Ryzen Threadripper 3000 Processors, Ryzen Threadripper PRO 7000 WX-Series Processors, Ryzen Threadripper PRO 3000WX Processors, Ryzen Threadripper PRO 5000WX- Desktop Processors, Ryzen 7020 Processors with Radeon Graphics, Ryzen 6000 Processor with Radeon Graphics, Ryzen 7035 Processor with Radeon Graphics, Ryzen 7000 Processors with Radeon Graphics, Ryzen 7040 Processors with Radeon Graphics, Ryzen 8040 Mobile Processors with Radeon Graphics, Ryzen 7000 Mobile Processors, EPYC Embedded 7002 Processors, EPYC Embedded 7003 Processors, EPYC Embedded 8004 Processors, EPYC Embedded 9004 Processors, Ryzen Embedded 5000 Processors, Ryzen Embedded 7000 Processors, Ryzen Embedded V2000 Processors and Ryzen Embedded V3000 Processors. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component UMIP Feature. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-36348. Attacking locally is a requirement. There is no exploit available.

CVE-2024-36348 | AMD EPYC 7002 Processors UMIP Feature information disclosure

Post correlati

CVE-2023-45931 | Freedesktop Mesa 23.0.4 check_xshm null pointer dereference

CVE-2025-2806 | tagDiv Composer Plugin up to 5.3 on WordPress data cross site scripting

CVE-2024-1815 | Spectra Plugin up to 2.12.8 on WordPress Image Gallery cross site scripting

CVE-2024-43409 | TryGhost up to 5.89.4 improper authentication (GHSA-78×2-cwp9-5j42)