AMD Radeon™ Graphics driver Vulnerabilities

An improper privilege management issue in the AMD Radeon™ Graphics driver allows an authenticated attacker to gain I/O control over arbitrary hardware ports or physical addresses, potentially creating an arbitrary code execution risk. A patch was released by AMD on October 17, 2023 to solve this problem[1].

Example Scenario:

An attacker gains system access as an authenticated user by leveraging the October 17, 2023 CVE-2023-20598 vulnerability in the AMD Radeon™ Graphics Card driver. By creating an IOCTL request, the attacker gains I/O control over arbitrary hardware ports or physical addresses. This allows the attacker to inject malicious code into the system or even completely take over it.

Solution:

AMD has released a patch for drivers with the CVE-2023-20598 vulnerability. This patch updates the driver, preventing attackers from gaining I/O control over arbitrary hardware ports or physical addresses via IOCTL requests. Therefore, it is important for users to update their AMD Radeon™ Graphics Card drivers to the latest version. Additionally, the following steps can also help reduce the risk of attacks: - Make sure all software and drivers on your system are up to date. - Manage user accounts on your system and remove unnecessary privileges. - Monitor network traffic on your system and detect abnormal activities. - Configure the firewall on your system and close unnecessary ports. - Update the antivirus software on your system and run regular scans. As a result, the CVE-2023-20598 vulnerability in the AMD Radeon™ Graphics driver allows an authenticated attacker to gain I/O control over arbitrary hardware ports or physical addresses, potentially creating an arbitrary code execution risk. Therefore, it is important to install the patch released by AMD and take other security measures.

Citations:

[1] https://nvd.nist.gov/vuln/detail/CVE-2023-20598

[2] https://github.com/advisories/GHSA-cjgx-jx6j-cmg7