{"cve":{"cve_id":"CVE-2023-31306","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00114,"epss_percentile":0.01782,"epss_as_of":"2026-06-23","description":"Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management (DPM) functions resulting in an out of bounds read and loss of availability.","published_at":"2025-09-06T16:26:58.244000Z","last_modified_at":null,"cvss_v3_score":3.3,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","cvss_v3_severity":"LOW","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"none","ssvc_automatable":false,"ssvc_technical_impact":"partial","cwes":["CWE-129"],"nvd_references":["https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-29T01:30:25.178791Z"},"effective_severity":"LOW","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"N","value_label":"None"},{"metric":"I","name":"Integrity","value":"N","value_label":"None"},{"metric":"A","name":"Availability","value":"L","value_label":"Low"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-pro-v520-graphics-products","product_name":"AMD Radeon™ PRO V520 Graphics Products","version_start":"Contact your AMD Customer Engineering representative","version_start_inclusive":true,"version_end":"Contact your AMD Customer Engineering representative","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-pro-v520-graphics-products:Contact your AMD Customer Engineering representative:Contact your AMD Customer Engineering representative"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-pro-v620-graphics-products","product_name":"AMD Radeon™ PRO V620 Graphics Products","version_start":"Contact your AMD Customer Engineering representative","version_start_inclusive":true,"version_end":"Contact your AMD Customer Engineering representative","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-pro-v620-graphics-products:Contact your AMD Customer Engineering representative:Contact your AMD Customer Engineering representative"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-pro-w5000-series-graphics-products","product_name":"AMD Radeon™ PRO W5000 Series Graphics Products","version_start":"No fix planned","version_start_inclusive":true,"version_end":"No fix planned","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-pro-w5000-series-graphics-products:No fix planned:No fix planned"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-pro-w6000-series-graphics-products","product_name":"AMD Radeon™ PRO W6000 Series Graphics Products","version_start":"AMD Software: PRO Edition 24.Q4 (24.20.30)","version_start_inclusive":true,"version_end":"AMD Software: PRO Edition 24.Q4 (24.20.30)","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-pro-w6000-series-graphics-products:AMD Software: PRO Edition 24.Q4 (24.20.30):AMD Software: PRO Edition 24.Q4 (24.20.30)"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-rx-5000-series-graphics-products","product_name":"AMD Radeon™ RX 5000 Series Graphics Products","version_start":"No fix planned","version_start_inclusive":true,"version_end":"No fix planned","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-rx-5000-series-graphics-products:No fix planned:No fix planned"},{"vendor_slug":"amd","vendor_name":"AMD","product_slug":"amd-radeon-rx-6000-series-graphics-products","product_name":"AMD Radeon™ RX 6000 Series Graphics Products","version_start":"AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)","version_start_inclusive":true,"version_end":"AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)","version_end_inclusive":true,"cpe23_uri":"cve5:amd:amd-radeon-rx-6000-series-graphics-products:AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01):AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2025-09-06T16:26:58.244000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:28:10.983340Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:28:10.983340Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:28:10.983340Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"ssvc_changed","at":"2026-06-29T01:30:25.178791Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:30:25.178791Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-29T01:30:25.178791Z","label":"SSVC decision revised","source":"vulnrichment"}]}