How to fix CVE-2023-31313?

Within 24 hours: Identify and inventory all systems running vulnerable AMD processors and document their criticality level. Within 7 days: Implement network segmentation to restrict privileged user access and disable unnecessary power management features where feasible; establish enhanced monitoring for anomalous SMU activity. Within 30 days: Coordinate with AMD for patch availability and test in non-production environments; review and strengthen privileged access controls and authentication mechanisms.

CVE-2023-31313

HIGH

2026-02-12 [email protected]

7.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 22:02 vuln.today

CVE Published

Feb 12, 2026 - 15:16 nvd

HIGH 7.2

Description

An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attacker to send malformed messages to the system management unit (SMU) potentially resulting in arbitrary code execution.

Analysis

Technical Context

Affected Products

An unintended proxy or intermediary in the AMD power management firmware (PMFW) could

Remediation

Monitor vendor advisories for a patch.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +36

POC: 0

CVE-2023-31313 vulnerability details – vuln.today

Back

CVE-2023-31313

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

CVE-2023-31313

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code