AMD CPUs LFENCE Speculation Bypass Disclosure
CVE-2024-36315 Published on May 13, 2026

Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality.

NVD

Weakness Type

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product. This weakness covers three distinct situations. A "missing" protection mechanism occurs when the application does not define any mechanism against a certain class of attack. An "insufficient" protection mechanism might provide some defenses - for example, against the most common attacks - but it does not protect against everything that is intended. Finally, an "ignored" mechanism occurs when a mechanism is available and in active use within the product, but the developer has not applied it in some code path.

Affected Versions

AMD EPYC™ Series 9004 Processors:

Version GenoaPI_1.0.0.E is unaffected.

AMD EPYC™Series 4004 Processors:

Version ComboAM5PI_1.0.0.a/ ComboAM5PI_1.1.0.3c/ ComboAM5PI_1.2.0.3 is unaffected.

AMD EPYC™ 8004 Series Processors:

Version GenoaPI_1.0.0.E is unaffected.

AMD Instinct™ MI300A Series Processors:

Version MI300PI 1.0.0.7 is unaffected.

AMD Ryzen™ Z1 Series Processors:

Version ComboAM5PI_1.2.0.3 is unaffected.
Version ComboAM5PI_1.1.0.3c is unaffected.
Version ComboAM5PI_1.0.0.a is unaffected.

AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics:

Version PhoenixPI-FP8-FP7_1.2.0.0 is unaffected.

AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics:

Version DragonRangeFL1_1.0.0.3g is unaffected.

AMD Ryzen™ 9000 Series Desktop Processors:

Version ComboAM5PI_1.2.0.3 is unaffected.

AMD Ryzen™ 7000 Series Desktop Processors:

Version ComboAM5PI_1.0.0.a is unaffected.
Version ComboAM5PI_1.1.0.3c is unaffected.
Version ComboAM5PI_1.2.0.3 is unaffected.

AMD Ryzen™ 8000 Series Desktop Processors:

Version ComboAM5PI_1.1.0.3c is unaffected.
Version ComboAM5PI_1.2.0.3 is unaffected.

AMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed "Raphael"):

Version ComboAM5PI_1.3.0.0 is unaffected.

AMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed "Phoenix"):

Version ComboAM5PI_1.3.0.0 is unaffected.

AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Genoa"):

Version EmbGenoaPI-SP5 1.0.0.D is unaffected.

AMD EPYC™ Embedded 8004 Series Processors:

Version EmbGenoaPI-SP5 1.0.0.D is unaffected.

AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Bergamo"):

Version EmbGenoaPI-SP5 1.0.0.D is unaffected.

AMD Ryzen™ Embedded 8000 Series Processors:

Version EmbeddedPhoenixPI-FP7r2_1.0.0.3 is unaffected.

AMD Ryzen™ Embedded 7000 Series Processors:

Version EmbeddedAM5PI 1.0.0.5 is unaffected.

Exploit Probability

EPSS

0.03%

Percentile

7.10%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

AMD CPUs LFENCE Speculation Bypass DisclosureCVE-2024-36315 Published on May 13, 2026

Weakness Type

Protection Mechanism Failure

Affected Versions

Exploit Probability

AMD CPUs LFENCE Speculation Bypass Disclosure
CVE-2024-36315 Published on May 13, 2026