AMD VCN-JPEG HW Register Isolation Vulnerability (CVE-2024-36323)
CVE-2024-36323 Published on May 15, 2026

Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine (VM) or a process to perform unauthorized access to the register space of the JPEG cores assigned a victim VM/process, potentially gaining arbitrary read/write access to the victim VM/process data.

NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2024-36323 has been classified to as an Authorization vulnerability or weakness.

Affected Versions

AMD Radeon™ RX 7000 Series Graphics Products:

Version Radeon Software for Linux 24.20.3 is unaffected.
Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01) is unaffected.

AMD Radeon™ PRO W7000 Series Graphics Products:

Version Radeon Software for Linux 24.20.3 is unaffected.
Version AMD Software: PRO Edition 25.Q3.1 (25.10.32) is unaffected.

AMD Instinct™ MI308X:

Version ROC 6.3 is unaffected.

AMD Instinct™ MI325X:

Version ROC 6.3 is unaffected.

AMD Instinct™ MI300X:

Version ROCm 6.3 is unaffected.

AMD Instinct™ MI300A:

Version ROCm 6.3 is unaffected.

AMD VCN-JPEG HW Register Isolation Vulnerability (CVE-2024-36323)CVE-2024-36323 Published on May 15, 2026

Weakness Type

What is an Authorization Vulnerability?

Affected Versions

AMD VCN-JPEG HW Register Isolation Vulnerability (CVE-2024-36323)
CVE-2024-36323 Published on May 15, 2026