CVE-2024-36333

7.8 HIGH

A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in...

Published: 2026-05-15 · Last updated: 2026-05-18

Severity and scoring

CVSS: 7.8 HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-427

Affected products

Vendor	Product
amd	cleanup_utility, radeon_software

Description

A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2024-36333
[Vendor advisory]https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html

Related CVEs

Same vendor

CVE-2026-49121 — AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerability in the MessageQueue.recv... (8.1 HIGH)
CVE-2023-31339 — Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perfo... (4.8 MEDIUM)

Same CWE

CVE-2026-11967 — MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading a malicious DLL locat...
CVE-2026-11879 — MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading malicious DLLs from a...
CVE-2026-53813 — OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influences local ... (7.8 HIGH)
CVE-2026-7870 — IBM i 7.6, 7.5, 7.4, and 7.3 could allow a user to gain elevated privileges due to an unqualified library call (8.8 HIGH)
CVE-2026-10847 — A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS (7.8 HIGH)