SpirityCVE

Improper input validation in AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary code execution.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Amd	Amd Ryzen™ Ai 300 Series Processors Radeon Pro V520 Radeon Pro V620 Radeon Pro V710 Radeon Pro W5000 Series Radeon Pro W6000 Series Radeon Pro W7000 Series Radeon Rx 5000 Series Radeon Rx 6000 Series Radeon Rx 7000 Series Radeon Rx 9000 Series Ryzen 5000 Series Desktop Processors Ryzen 5000 Series Processors With Radeon Graphics Ryzen 6000 Series Processors With Radeon Graphics Ryzen 7000 Series Desktop Processors Ryzen 7035 Series Processors With Radeon Graphics Ryzen 7040 Series Mobile Processors With Radeon Graphics Ryzen 8000 Series Desktop Processors Ryzen 9000 Series Desktop Processors Ryzen 9000hx Series Mobile Processors Ryzen Al Max+ Ryzen Embedded 7000 Series Processors Ryzen Embedded 8000 Series Processors Ryzen Embedded 9000 Series Processors V620/nv21

No data.

References

Link	Providers
https://www.spirityenterprise.com/supply-chain-defense
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.html

History

Thu, 12 Feb 2026 11:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Amd Amd amd Ryzen™ Ai 300 Series Processors Amd radeon Pro V520 Amd radeon Pro V620 Amd radeon Pro V710 Amd radeon Pro W5000 Series Amd radeon Pro W6000 Series Amd radeon Pro W7000 Series Amd radeon Rx 5000 Series Amd radeon Rx 6000 Series Amd radeon Rx 7000 Series Amd radeon Rx 9000 Series Amd ryzen 5000 Series Desktop Processors Amd ryzen 5000 Series Processors With Radeon Graphics Amd ryzen 6000 Series Processors With Radeon Graphics Amd ryzen 7000 Series Desktop Processors Amd ryzen 7035 Series Processors With Radeon Graphics Amd ryzen 7040 Series Mobile Processors With Radeon Graphics Amd ryzen 8000 Series Desktop Processors Amd ryzen 9000 Series Desktop Processors Amd ryzen 9000hx Series Mobile Processors Amd ryzen Al Max+ Amd ryzen Embedded 7000 Series Processors Amd ryzen Embedded 8000 Series Processors Amd ryzen Embedded 9000 Series Processors Amd v620/nv21
Vendors & Products		Amd Amd amd Ryzen™ Ai 300 Series Processors Amd radeon Pro V520 Amd radeon Pro V620 Amd radeon Pro V710 Amd radeon Pro W5000 Series Amd radeon Pro W6000 Series Amd radeon Pro W7000 Series Amd radeon Rx 5000 Series Amd radeon Rx 6000 Series Amd radeon Rx 7000 Series Amd radeon Rx 9000 Series Amd ryzen 5000 Series Desktop Processors Amd ryzen 5000 Series Processors With Radeon Graphics Amd ryzen 6000 Series Processors With Radeon Graphics Amd ryzen 7000 Series Desktop Processors Amd ryzen 7035 Series Processors With Radeon Graphics Amd ryzen 7040 Series Mobile Processors With Radeon Graphics Amd ryzen 8000 Series Desktop Processors Amd ryzen 9000 Series Desktop Processors Amd ryzen 9000hx Series Mobile Processors Amd ryzen Al Max+ Amd ryzen Embedded 7000 Series Processors Amd ryzen Embedded 8000 Series Processors Amd ryzen Embedded 9000 Series Processors Amd v620/nv21

Wed, 11 Feb 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 11 Feb 2026 15:00:00 +0000

Type	Values Removed	Values Added
Description		Improper input validation in AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary code execution.
Weaknesses		CWE-787
References		https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.html
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2026-02-11T14:29:47.274Z

Updated: 2026-02-12T04:55:11.973Z

Reserved: 2024-05-23T19:44:40.301Z

Link: CVE-2024-36324

Vulnrichment

Updated: 2026-02-11T15:40:33.130Z

NVD

Status : Awaiting Analysis

Published: 2026-02-11T15:16:11.990

Modified: 2026-02-11T15:27:26.370

Link: CVE-2024-36324

Redhat

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object