CVE-2023-31324
CVE-2023-31324
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.1EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
11 Feb 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to modify External Global Memory Interconnect Trusted Agent (XGMI TA) commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability.
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L
Affected products
AMD · AMD Instinct™ MI210AMD · AMD Instinct™ MI250AMD · AMD Instinct™ MI300AAMD · AMD Instinct™ MI300XAMD · AMD Radeon™ PRO W5000 Series Graphics ProductsAMD · AMD Radeon™ RX 5000 Series Graphics ProductsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →