Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-36340

A junction point vulnerability within AMD uProf can allow a local low-privileged attacker to create junction points, potentially resulting in arbitrary file deletion or disclosure.

Published

2025-05-13T14:15:19.350

Last Modified

2025-11-26T18:52:35.380

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.6 (MEDIUM)

Weaknesses

Type: Secondary
CWE-1386

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	amd	uprof	< 5.0.1174	Yes
Application	amd	uprof	< 5.0.1223	Yes
Application	amd	uprof	< 5.0.1479	Yes

References

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-9013.html Mitigation, Patch, Vendor Advisory ([email protected])