Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-36350

MEDIUM
Published 2025-07-08T16:56:39.834Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-36350. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
5.6
/10
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

Attack Vector Metrics

Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Description

A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.

Available Exploits

No exploits available for this CVE.

Related News

Xen Security Advisory 471 v2 (CVE-2024-36350,CVE-2024-36357) - x86: Transitive Scheduler Attacks

Posted by Xen . org security team on Aug 28 Xen Security Advisory CVE-2024-36350,CVE-2024-36357 / XSA-471 version 2 x86: Transitive Scheduler Attacks UPDATES IN VERSION 2 ==================== The fix for this issue uncovered a pre-existing bug with the h…

Seclists.org 2025-08-28 15:39
Read More

Affected Products

AMD

AMD EPYC™ 7003 Series Processors

Affected Versions:

MilanPI 1.0.0.G + OS Updates
AMD

AMD EPYC™ 9004 Series Processors

Affected Versions:

GenoaPI 1.0.0.E + OS Updates
AMD

AMD EPYC™ 8004 Series Processors

Affected Versions:

GenoaPI 1.0.0.E + OS Updates
AMD

AMD EPYC™ 9V64H Processor

Affected Versions:

MI300PI 1.0.0.7 + OS Updates
AMD

AMD Ryzen™ 5000 Series Desktop Processors

Affected Versions:

ComboAM4v2PI 1.2.0.E + OS Updates
AMD

AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics

Affected Versions:

ComboAM4v2PI 1.2.0.E + OS Updates
AMD

AMD Ryzen™ 7000 Series Desktop Processors

Affected Versions:

ComboAM5PI 1.2.0.3 + OS Updates ComboAM5PI 1.0.0.a+ OS Updates ComboAM5PI 1.1.0.3c+ OS Updates
AMD

AMD Ryzen™ 8000 Series Processor with Radeon™ Graphics

Affected Versions:

ComboAM5PI 1.2.0.3 + OS Updates ComboAM5PI 1.1.0.3c+ OS Updates
AMD

AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors

Affected Versions:

StormPeakPI-SP6 1.1.0.0i + OS Updates StormPeakPI-SP6 1.0.0.1k + OS Updates
AMD

AMD Ryzen™ 6000 Series Processor with Radeon™ Graphics

Affected Versions:

RembrandtPI-FP7 1.0.0.Bb + OS Updates
AMD

AMD Ryzen™ 7035 Series Processor with Radeon™ Graphics

Affected Versions:

RembrandtPI-FP7 1.0.0.Bb + OS Updates
AMD

AMD Ryzen™ 7000 Series Processors with Radeon™ Graphics

Affected Versions:

CezannePI-FP6 1.0.1.1b + OS Updates
AMD

AMD Ryzen™ 7040 Series Processors with Radeon™ Graphics

Affected Versions:

PhoenixPI-FP8-FP7 1.2.0.0 + OS Updates
AMD

AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics

Affected Versions:

PhoenixPI-FP8-FP7 1.2.0.0 + OS Updates
AMD

AMD Ryzen™ 7000 Series Mobile Processors

Affected Versions:

DragonRangeFL1 1.0.0.3g + OS Updates
AMD

AMD EPYC™ Embedded 7003 Series Processors

Affected Versions:

EmbMilanPI-SP3 1.0.0.A + OS updates
AMD

AMD EPYC™ Embedded 8004 Series Processors

Affected Versions:

EmbGenoaPI-SP5 1.0.0.9 + OS updates
AMD

AMD EPYC™ Embedded 9004 Series Processors

Affected Versions:

EmbGenoaPI-SP5 1.0.0.9 + OS updates
AMD

AMD Ryzen™ Embedded 5000 Series Processors

Affected Versions:

EmbAM4PI 1.0.0.7 + OS Update
AMD

AMD Ryzen™ Embedded 7000 Series Processors

Affected Versions:

EmbeddedAM5PI 1.0.0.3 + OS updates
AMD

AMD Ryzen™ Embedded V3000 Series Processors

Affected Versions:

Embedded-PI_FP7r2 100C + OS updates
AMD

AMD EPYC™ Embedded 97X4

Affected Versions:

EmbGenoaPI-SP5 1.0.0.9 + OS updates
AMD

AMD Ryzen™ 5000 Series Processors with Radeon™ Graphics

Affected Versions:

CezannePI-FP6 1.0.1.1b + OS Updates

EU Vulnerability Database

Monitored by ENISA for EU cybersecurity

EU Coordination

Not EU Coordinated

Exploitation Status

No Known Exploitation

EUVD ID

View on ENISA

ENISA Analysis

A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.

Affected Products (ENISA)

amd
amd ryzen™ embedded 7000 series processors

ENISA Scoring

CVSS Score (3.1)

5.6
/10
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

EPSS Score

0.020
probability

ENISA References

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

Data provided by ENISA EU Vulnerability Database. Last updated: July 8, 2025

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-3q6p-m26m-f78r

Advisory Details

A transient execution vulnerability in some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-36350
WEB https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html

Advisory provided by GitHub Security Advisory Database. Published: July 8, 2025, Modified: July 8, 2025

References

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html
Published: 2025-07-08T16:56:39.834Z
Last Modified: 2025-07-08T20:23:25.907Z
Copied to clipboard!