CVE-2024-36336

CVSS 3.1 Score 7.9 of 10 (high)

Details

Published Apr 2, 2025

Updated: Apr 7, 2025

CWE ID 190

Summary

CVE-2024-36336 is a newly disclosed vulnerability affecting the AMD NPU Driver. This issue involves an integer overflow, which can enable a local attacker to write data beyond the intended limit. The consequences of this vulnerability are significant, as it may result in a loss of confidentiality, integrity, or availability. The precise manner in which this occurs is not clear, but it could potentially allow an attacker to execute arbitrary code, manipulate data, or cause the system to crash. Users are advised to apply the necessary patches as soon as they become available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Vendors

Advanced Micro Devices

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners