DLL Hijacking in AMD Cleanup Utility Enables Priv Escalation
CVE-2024-36333 Published on May 15, 2026
A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.
Weakness Type
What is a DLL preloading Vulnerability?
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
CVE-2024-36333 has been classified to as a DLL preloading vulnerability or weakness.
Affected Versions
AMD Radeon™ RX 5000 Series Graphics Products:- Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected.
- Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected.
- Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected.
- Version AMD Software: Adrenalin Edition 25.10.2 (25.20.21.01 RDNA3+, 25.10.33.02 RDNA1/RDNA2) is unaffected.
- Version https://www.amd.com/en/resources/support-articles/faqs/GPU-601.html is unaffected.
- Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected.
- Version AMD Software: PRO Edition 25.Q3.1 (25.10.32 RDNA) is unaffected.
- Version AMD Software: Adrenalin Edition 26.1.1 (23.19.24) is unaffected.
- Version AMD Software: Adrenalin Edition 26.1.1 (23.19.24) is unaffected.
- Version AMD Software: PRO Edition 26.Q1 (23.19.24) is unaffected.
- Version AMD Software: PRO Edition 26.Q1 (23.19.24) is unaffected.