CVE-2023-31339

MEDIUM(4.8)

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:H

Risk Signal Score12/100 — NIEDRIG

CVSS 4.8 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.8

Technische Schwere

Beschreibung

Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perform out of bound reads, potentially resulting in data leakage and denial of service.

Referenzen

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-8002