AMD just revealed that has detected a new vulnerability in its Ryzen Master software. The flaw is potentially dangerous, as it could allow an attacker to gain full control of the affected PC.
AMD Ryzen Master is a very useful software for AMD processors, which allows you to monitor it in real time, modify clock speeds and voltage. The degree of the vulnerability is such that if it falls into the wrong hands, you could be in trouble since the tool has been hit with a pretty serious vulnerability.
AMD software is potentially dangerous
The vulnerability was discovered by Conor McNamara and subsequently disclosed by AMD itself. Its severity was classified as high, and AMD described the potential impact as “privilege escalation«.
As stated by AMD, the lack of privilege validation during the installation of AMD Ryzen Master may allow a low privileged attacker to modify files. This can potentially lead to privilege escalation and even code execution by the lower privileged user. It is not known if this would be possible without administrator access, but the user may need to be able to access the computer in person in order to carry out an attack.
It is not expected that this is a vulnerability that will affect many users, since, since it requires physical control, it is very difficult for them to use a personal computer in one's room. Its danger lies in the fact that once someone is affected, the impact could already be serious.
They advise that it is best to update Ryzen Master to the latest version of the software (2.10.1.2287). This will protect you from the vulnerability and will also give you new features, such as the ability to set a maximum temperature for the CPU, and adjust the processor voltage above 5,2V, but it is recommended to do so except for experts in overclocking of CPUs.
Source: Digital Trends
