CVE-2024-36349
Awaiting Analysis Awaiting Analysis - Queue
BaseFortify

Publication date: 2025-07-08

Last updated on: 2025-07-10

Assigner: Advanced Micro Devices Inc.

Description
A transient execution vulnerability in some AMD processors may allow a user process to infer TSC_AUX even when such a read is disabled, potentially resulting in information leakage.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-08
Last Modified
2025-07-10
Generated
2026-05-07
AI Q&A
2025-07-08
EPSS Evaluated
2026-05-05
NVD
CVE-2024-36349
EUVD
EUVD-2024-54762
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a transient execution issue in some AMD processors that may allow a user process to infer the value of TSC_AUX even when reading it is disabled. This can potentially lead to information leakage.


How can this vulnerability impact me? :

The vulnerability could allow an attacker with limited privileges to infer sensitive timing information (TSC_AUX), which may lead to information leakage. However, it has a low base CVSS score of 3.8, indicating limited impact.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart