Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Amd
  • Radeon Pro W6600
  • Ryzen 3 5300g
  • Ryzen 5 5500h
  • Ryzen 5 4500
  • Radeon Rx 7800 Xt
  • Radeon Pro Vega 64 Firmware
  • Radeon Rx 6500 Xt
  • Radeon Pro W5500x
  • Radeon Rx 6600 Xt
  • Ryzen 5 4680u
  • Radeon Pro Vega 56 Firmware
  • Ryzen 7 4700ge
  • Radeon Rx Vega 64 Firmware
  • Radeon Pro Vega 56
  • Radeon Rx 6700s
  • Radeon Rx 7600m
  • Ryzen 9 4900h
  • Ryzen 9 4900hs
  • Radeon Pro W5700x
  • Ryzen 5 4600g
  • Ryzen 5 4500u
  • Radeon Pro W6900x
  • Ryzen 7 4800hs
  • Radeon Rx 6800s
  • Ryzen 5 Pro 3400ge
  • Ryzen 5 Pro 3350g
  • Ryzen 3 5300u
  • Radeon Rx 6700
  • Radeon Pro W6600m
  • Radeon Rx 6650m Xt
  • Radeon Software
  • Ryzen 3 4300u
  • Radeon Rx 6950 Xt
  • Radeon Pro W7600
  • Radeon Rx 6300m
  • Radeon Pro W6300
  • Radeon Rx 6800
  • Radeon Rx Vega 56 Firmware
  • Radeon Rx 5500 Xt
  • Radeon Rx 7600
  • Radeon Rx 6600s
  • Radeon Pro W5500
  • Radeon Rx 5700 Xt
  • Ryzen 3 4100
  • Ryzen 3 3015ce
  • Ryzen 7 5700u
  • Ryzen 7 5700ge
  • Radeon Rx 6700 Xt
  • Radeon Rx 5600 Xt
  • Radeon Pro W5700
  • Radeon Pro W6800x Duo
  • Ryzen 5 Pro 3200ge
  • Ryzen 5 5600ge
  • Radeon Rx 7700s
  • Radeon Rx 5600
  • Ryzen 5 Pro 3200g
  • Ryzen 3 3015e
  • Radeon Rx 6700m
  • Radeon Rx 6550m
  • Radeon Rx 6600m
  • Radeon Rx 5700m
  • Radeon Rx 6550s
  • Ryzen 7 4800h
  • Radeon Rx 5300m
  • Radeon Rx Vega 56
  • Ryzen 3 5300ge
  • Radeon Pro W6300m
  • Ryzen 7 4700g
  • Radeon Rx 7900 Xt
  • Radeon Pro W6800x
  • Radeon Rx 7900m
  • Ryzen 3 4300g
  • Radeon Rx 5300 Xt
  • Radeon Rx 6800 Xt
  • Radeon Rx 6500m
  • Ryzen 5 Pro 3400g
  • Radeon Rx 6450m
  • Ryzen 5 5500u
  • Radeon Rx 5500
  • Radeon Rx Vega 64
  • Ryzen 7 4700u
  • Ryzen 3 4300ge
  • Ryzen 5 4600h
  • Radeon Rx 6600
  • Radeon Rx 5700
  • Ryzen 7 4980u
  • Radeon Rx 7600m Xt
  • Radeon Pro W6800
  • Radeon Rx 6650m
  • Radeon Rx 6850m Xt
  • Ryzen 7 5700g
  • Ryzen 5 4600u
  • Radeon Rx 6900 Xt
  • Radeon Rx 5300
  • Radeon Pro Vega 64
  • Radeon Rx 7600s
  • Radeon Pro W6400
  • Radeon Rx 7900 Gre
  • Radeon Rx 6650 Xt
  • Radeon Rx 6800m
  • Radeon Pro W6500m
  • Ryzen 5 4600hs
  • Ryzen 5 5600g
  • Radeon Pro W7500
  • Ryzen 5 Pro 3350ge
  • Radeon Pro W6600x
  • Radeon Rx 7700 Xt
  • Radeon Rx 7900 Xtx
  • Radeon Pro W7800
  • Radeon Rx 5500m
  • Radeon Rx 5600m
  • Ryzen 5 4600ge
  • Radeon Rx 6400
Intel
  • Core I5-8305g
  • Nuc Kit Nuc8i7hvk
  • Core I7-8705g
  • Nuc 8 Enthusiast Nuc8i7hvkva
  • Nuc 8 Enthusiast Nuc8i7hnkqc
  • Core I7-8706g
  • Core I7-8709g
  • Radeon Rx Vega M Firmware
  • Nuc 8 Enthusiast Nuc8i7hvkvaw
  • Nuc Kit Nuc8i7hnk

Configuration 1 [-]

AND
cpe:2.3:o:intel:radeon_rx_vega_m_firmware:*:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:core_i5-8305g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_i7-8705g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_i7-8706g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:core_i7-8709g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7hnkqc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7hvkva:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7hvkvaw:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc8i7hnk:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc8i7hvk:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:a:amd:radeon_software:*:*:*:*:adrenalin:*:*:*
OR cpe:2.3:h:amd:radeon_rx_5300:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5300_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5300m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5500:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5500_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5500m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5600:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5600_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5600m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5700:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5700_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_5700m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6300m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6400:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6450m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6500_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6500m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6550m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6550s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6600:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6600_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6600m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6600s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6650_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6650m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6650m_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6700:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6700_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6700m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6700s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6800:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6800_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6800m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6800s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6850m_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6900_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_6950_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7600:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7600m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7600m_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7600s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7700_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7700s:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7800_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7900_gre:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7900_xt:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7900_xtx:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_7900m:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:a:amd:radeon_software:*:*:*:*:pro:*:*:*
OR cpe:2.3:h:amd:radeon_pro_w5500:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w5500x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w5700:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w5700x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6300:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6300m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6400:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6500m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6600:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6600m:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6600x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6800:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6800x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w6900x:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w7500:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w7600:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_w7800:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:amd:radeon_rx_vega_56_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_vega_56:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:amd:radeon_rx_vega_64_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_rx_vega_64:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:amd:radeon_pro_vega_56_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_vega_56:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:amd:radeon_pro_vega_64_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:radeon_pro_vega_64:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
OR cpe:2.3:a:amd:radeon_software:*:*:*:*:adrenalin:*:*:*
cpe:2.3:a:amd:radeon_software:*:*:*:*:pro:*:*:*
OR cpe:2.3:h:amd:ryzen_3_3015ce:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_3015e:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_4100:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_4300g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_4300ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_4300u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5300g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5300ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5300u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4500:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4500u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4600g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4600ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4600h:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4600hs:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4600u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_4680u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5500h:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5500u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3200g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3200ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3350g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3350ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3400g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_pro_3400ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4700g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4700ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4700u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4800h:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4800hs:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_4980u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5700g:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5700ge:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5700u:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_4900h:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_4900hs:-:*:*:*:*:*:*:*
References
Link Resource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-6003 Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00971.html Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: AMD

Published: 2023-11-14T18:51:25.340Z

Updated: 2023-11-14T18:51:25.340Z

Reserved: 2022-10-27T18:53:39.753Z

Link: CVE-2023-20567

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-11-14T19:15:15.880

Modified: 2023-11-27T18:53:25.043

Link: CVE-2023-20567

JSON object: View

cve-icon Redhat Information

No data.

CWE