CVE-2023-31323 AMD ASP Type Confusion: XGMI TA Memory Safety
CVE-2023-31323 Published on February 12, 2026
Type confusion in the AMD Secure Processor (ASP) could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent (XGMI TA) leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability.
Weakness Type
What is an Object Type Confusion Vulnerability?
The program allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.
CVE-2023-31323 has been classified to as an Object Type Confusion vulnerability or weakness.
Affected Versions
AMD Radeon™ RX 5000 Series Graphics Products:- Version AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10) is unaffected.
- Version AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10) is unaffected.
- Version No fix planned is affected.
- Version No fix planned is affected.
- Version ROCm 6.2 is unaffected.
- Version ROCm 6.2 is unaffected.
- Version ROCm 6.2 is unaffected.
- Version ROCm 6.2 is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.