CVE-2024-36333 PUBLISHED

Assigner: AMD
Reserved: 23.05.2024 Published: 15.05.2026 Updated: 15.05.2026

A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 7

Product Status

Vendor AMD
Product AMD Radeon™ RX 5000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected
Vendor AMD
Product AMD Radeon™ PRO W5000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected
Vendor AMD
Product AMD Radeon™ RX 6000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected
Vendor AMD
Product AMD Radeon™ RX 7000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected
Vendor AMD
Product AMD Cleanup Utility
Versions Default: affected
  • Version https://www.amd.com/en/resources/support-articles/faqs/GPU-601.html is unaffected
Vendor AMD
Product AMD Radeon™ PRO W6000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected
Vendor AMD
Product AMD Radeon™ PRO W7000 Series Graphics Products
Versions Default: affected
  • Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected
Vendor AMD
Product AMD Radeon™ RX Vega Series Graphics Cards
Versions Default: affected
  • Version AMD Software: Adrenalin Edition 26.1.1 (23.19.24) is unaffected
Vendor AMD
Product AMD Radeon™ VII
Versions Default: affected
  • Version AMD Software: Adrenalin Edition 26.1.1 (23.19.24) is unaffected
Vendor AMD
Product AMD Radeon™ PRO WX 8000/9000 Series Graphics Cards
Versions Default: affected
  • Version AMD Software: PRO Edition 26.Q1 (23.19.24) is unaffected
Vendor AMD
Product AMD Radeon™ PRO VII
Versions Default: affected
  • Version AMD Software: PRO Edition 26.Q1 (23.19.24) is unaffected

Credits

  • Reported through AMD Bug Bounty Program

References

Problem Types

  • Security Vulnerability