CVE-2022-23815 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2022-23815

Improper bounds checking in APCB firmware may allow an attacker to perform an out of bounds write, corrupting the APCB entry, potentially leading to arbitrary code execution.

Published: Aug 13, 2024
Updated: May 4, 2025
CVE: CVE-2022-23815
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.2
AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
amd / athlon_silver_3050u_firmware	-	picassopi-fp5_1.0.0.e
amd / athlon_gold_3150u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_7_3780u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_7_3750h_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_7_pro_3700u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_7_3700u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_5_3580u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_5_3550h_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_5_3500u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_3_3300u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_3_3250u_firmware	-	picassopi-fp5_1.0.0.e
amd / ryzen_3_3200u_firmware	-	picassopi-fp5_1.0.0.e

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-4004.html