CVE-2024-36333
HIGHDescription
A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.
Is your site exposed to CVE-2024-36333?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| amd | radeon_software |
| amd | radeon_pro_vii |
| amd | radeon_software |
| amd | radeon_pro_w5500 |
| amd | radeon_pro_w5500x |
| amd | radeon_pro_w5700 |
| amd | radeon_pro_w5700x |
| amd | radeon_pro_w6300 |
| amd | radeon_pro_w6300m |
| amd | radeon_pro_w6400 |
| amd | radeon_pro_w6500m |
| amd | radeon_pro_w6600 |
| amd | radeon_pro_w6600m |
| amd | radeon_pro_w6600x |
| amd | radeon_pro_w6800 |
| amd | radeon_pro_w6800x |
| amd | radeon_pro_w6800x_duo |
| amd | radeon_pro_w6900x |
| amd | cleanup_utility |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-36333? +
How severe is CVE-2024-36333? +
What products are affected by CVE-2024-36333? +
How do I check if I'm vulnerable to CVE-2024-36333? +
Related Vulnerabilities
To allow builds of Python to be run from an in-tree layout (rather than an installed file layout), the VPATH …
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load …
Rufus is a utility that helps format and create bootable USB flash drives. A DLL hijacking vulnerability in Rufus 4.6.2208 …
DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator privileges to load a malicious dynamic-link library and execute …
Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows allows DLL Side-Loading.This issue affects Secure Content Manager: …
PSEvents.exe in multiple Panda Security products runs hourly with SYSTEM privileges and loads DLL files from a user-writable directory without …