AMD today upgraded the Ryzen Overclocking Tool Ryzen Master, mainly fixing the “CVE-2022-27677” high-risk vulnerability. AMD said hackers could exploit this vulnerability to elevate privileges and execute arbitrary code.
AMD stated in the official announcement that
"CVE-2022-27677 Failure to validate privileges during installation of AMD Ryzen™ Master results in an attacker with low privileges modifying files to gain higher privileges and execute arbitrary code."
AMD Ryzen™ Master is a software tool that gives users advanced, real-time control over system performance. AMD Ryzen™ Master allows users to control various clock and voltage settings in real time.
AMD already fixed the vulnerability in December, but only disclosed information about the security flaw today. AMD recommends that Windows 11 and Windows 10 users update to the latest version of Ryzen Master 126.96.36.1997 as soon as possible.