Description

Debug code left active in AMD's Video Decoder Engine Firmware (VCN FW) could allow a attacker to submit a maliciously crafted command causing the VCN FW to perform read/writes HW registers, potentially impacting confidentiality, integrity and availabilability of the system.

INFO

Published Date :

2026-02-12T17:41:06.194Z

Last Modified :

2026-02-26T14:44:20.866Z

Source :

AMD
AFFECTED PRODUCTS

The following products are affected by CVE-2024-36319 vulnerability.

Vendors Products
Amd
  • Instinct Mi300a
  • Instinct Mi300x
  • Instinct Mi308x
  • Instinct Mi325x
  • Radeon Pro V710
  • Radeon Pro W7000 Series
  • Radeon Rx 7000 Series
  • Ryzen 7040 Series Mobile Processors With Radeon Graphics
  • Ryzen 8000 Series Desktop Processors
  • Ryzen 8040 Series Mobile Processors With Radeon Graphics
  • Ryzen Ai 300 Series Processors
  • Ryzen Embedded 7000 Series Processors
  • Ryzen Embedded 8000 Series Processors
  • Ryzen Embedded 9000 Series Processors
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-36319.

URL Resource
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability