CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-27674

Insufficient validation in the IOCTL input/output buffer in AMD μProf may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.9%

CVSS Severity

CVSS v3 Score 7.5

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1046
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1046

Products affected by CVE-2022-27674

Amd » Amd Uprof » Version: 3.4.494

cpe:2.3:a:amd:amd_uprof:3.4.494
Amd » Amd Uprof » Version: 3.4.502

cpe:2.3:a:amd:amd_uprof:3.4.502
Freebsd » Freebsd » Version: N/A

cpe:2.3:o:freebsd:freebsd:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27674

Products

Pricing

Contact Us