CVE-2023-31324 HIGH

CVE-2023-31324

Weakness CWE-367
Published February 11, 2026
Last update February 11, 2026

CVSS base score

7.1/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L

What the vulnerability does

01Description

A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to modify External Global Memory Interconnect Trusted Agent (XGMI TA) commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability.

Key dates

02Disclosure timeline

February 11, 2026 CVE published
February 11, 2026 Record updated