CVE-2023-31313 HIGH

CVE-2023-31313

Weakness CWE-441
Published February 12, 2026
Last update February 12, 2026

CVSS base score

7.2/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

What the vulnerability does

01Description

An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attacker to send malformed messages to the system management unit (SMU) potentially resulting in arbitrary code execution.

Key dates

02Disclosure timeline

February 12, 2026 CVE published
February 12, 2026 Record updated