Lenovo update for AMD HIP SDK

Published: 2025-05-21

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2024-21937
CWE-ID	CWE-276
Exploitation vector	Local
Public exploit	N/A
Vulnerable software	AMD Graphics Driver for Windows 11 (Version 24H2) and 10 (Version 22H2) - ThinkStation P8 Hardware solutions / Drivers AMD Discrete Graphics Driver for Windows 10 (Version 21H2), 11 (Version 21H2, 22H2) - ThinkStation P7 Intel Hardware solutions / Drivers AMD Discrete VGA Driver for Windows 11 (Version 22H2) - ThinkStation P620 Hardware solutions / Drivers AMD Discrete Graphics Driver for RX7600 for Windows 10 (Version 22H2) - ThinkStation P520c Hardware solutions / Drivers AMD Discrete Graphics Driver for Windows 10 (Version 21H2), 11 (Version 21H2, 22H2) - ThinkStation P5 Hardware solutions / Drivers AMD Discrete Graphics Driver for Windows 11 (Version 21H2 or Later) - ThinkStation P360 Hardware solutions / Drivers AMD Discrete Graphics Driver for W6400 for Windows 11 (Version 21H2, 22H2 or Later) - ThinkStation P360 Ultra Hardware solutions / Drivers AMD Discrete Graphics Driver for W6400 for Windows 10 (Version 21H2, 22H2 or Later) - ThinkStation P360 Ultra Hardware solutions / Drivers AMD Discrete Graphics Driver for Windows 11 (Version 22H2 or Later), 10 (Version 22H2) - ThinkStation P358 Hardware solutions / Drivers AMD IO Driver for Windows 11 (Version 22H2 or later) - ThinkPad P15v Gen 3 (Type 21EM, 21EN) Hardware solutions / Drivers AMD IO Driver for Windows 11 (Version 21H2), 10 (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM) Hardware solutions / Drivers AMD IO Driver for Windows 11 (Version 21H2) - ThinkPad P15v Gen 3 (Type 21EM, 21EN) Hardware solutions / Drivers AMD Graphics Driver Windows 11 (Version 21H2 or later), 10 64-bit (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM) Hardware solutions / Drivers AMD Graphics Driver for Windows 11 (Version 21H2) - ThinkPad P15v Gen 3 (Type 21EM, 21EN) Hardware solutions / Drivers AMD Graphics Driver for Windows 10 (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM) Hardware solutions / Drivers AMD IO Driver for Windows 11 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2 Hardware solutions / Drivers AMD IO Driver for Windows 10 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2 Hardware solutions / Drivers AMD Graphics Driver for Windows 10 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2 Hardware solutions / Drivers AMD IO Driver for Windows 11 (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF) Hardware solutions / Drivers AMD IO Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF) Hardware solutions / Drivers AMD Graphics Driver for Windows 11 (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF) Hardware solutions / Drivers AMD Graphics Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF) Hardware solutions / Drivers AMD IO Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad Hardware solutions / Drivers AMD VGA Driver for Windows 11 (64-bit) - ThinkBook 14 G7 ARP, ThinkBook 16 G7 ARP Hardware solutions / Drivers AMD VGA Driver for Windows 11 (64-bit) - ThinkBook 14 G6 ABP, ThinkBook 16 G6 ABP Hardware solutions / Drivers AMD VGA Driver for Windows 10 (64-bit) - ThinkBook 14 G6 ABP, ThinkBook 14 G6 ABP Hardware solutions / Drivers AMD VGA Driver for Windows 11 (64-bit) - LOQ 15AHP9 Hardware solutions / Drivers AMD VGA Driver for Windows 11 (64-bit) - Legion Slim 5 16AHP9 Hardware solutions / Drivers AMD Graphics Driver for Windows 11 (Version 22H2 or later) - Lenovo 13w Yoga Gen 2 (Type 82YR, 82YS) Hardware solutions / Drivers AMD Graphics Driver for Windows 10 (Version 22H2 or later) - Lenovo 13w Yoga Gen 2 Hardware solutions / Drivers AMD Graphics Driver for Windows 11 (Version 21H2 or later) - Lenovo 13w Yoga (Type 82S1, 82S2) Hardware solutions / Drivers AMD Graphics Driver for Windows 10 64-bit (Version 21H2 or later) - Lenovo 13w Yoga (Type 82S1, 82S2) Hardware solutions / Drivers AMD Graphics Driver for Windows 10 IOT (64-bit) - ThinkCentre M75n Hardware solutions / Drivers AMD Graphics Driver for Windows 10 64-bit (Version 1909 or later) - ThinkCentre M75n Hardware solutions / Drivers LOQ 15AHP9 Hardware solutions / Firmware Legion Slim 5 16AHP9 Hardware solutions / Firmware ThinkBook 16 G7 ARP Hardware solutions / Firmware ThinkBook 14 G7 ARP Hardware solutions / Firmware ThinkStation P8 Workstation Hardware solutions / Firmware ThinkStation P358 Workstation Hardware solutions / Firmware ThinkPad Z16 Gen 2 21JY Hardware solutions / Firmware ThinkPad Z16 Gen 2 21JX Hardware solutions / Firmware ThinkPad Z13 Gen 2 21JW Hardware solutions / Firmware ThinkPad Z13 Gen 2 21JV Hardware solutions / Firmware ThinkBook 16 G6 ABP Hardware solutions / Firmware ThinkBook 14 G6 ABP Hardware solutions / Firmware Lenovo 13w Yoga Gen 2 82YS Hardware solutions / Firmware Lenovo 13w Yoga Gen 2 82YR Hardware solutions / Firmware Lenovo 13w Yoga 82S2 Hardware solutions / Firmware Lenovo 13w Yoga 82S1 Hardware solutions / Firmware ThinkCentre M75n Hardware solutions / Firmware ThinkStation P620 Workstation Hardware solutions / Firmware ThinkPad T16 Gen 2 21K8 Hardware solutions / Firmware ThinkPad T16 Gen 2 21K7 Hardware solutions / Firmware ThinkPad T14s Gen 4 21F9 Hardware solutions / Firmware ThinkPad T14s Gen 4 21F8 Hardware solutions / Firmware ThinkPad T14 Gen 4 21K4 Hardware solutions / Firmware ThinkPad T14 Gen 4 21K3 Hardware solutions / Firmware ThinkPad P16v Gen 1 21FF Hardware solutions / Firmware ThinkPad P16v Gen 1 21FE Hardware solutions / Firmware ThinkPad P16s Gen 2 21KA Hardware solutions / Firmware ThinkPad P16s Gen 2 21K9 Hardware solutions / Firmware ThinkPad P15v Gen 3 21EM Hardware solutions / Firmware ThinkPad P15v Gen 3 21EN Hardware solutions / Firmware ThinkPad P14s Gen 4 21K6 Hardware solutions / Firmware ThinkPad P14s Gen 4 21K5 Hardware solutions / Firmware ThinkStation P360 Ultra Workstation Hardware solutions / Firmware ThinkStation P7 Intel Workstation Hardware solutions / Firmware ThinkStation P5 Workstation Hardware solutions / Firmware ThinkStation P520c Workstation Hardware solutions / Firmware ThinkStation P360 Workstation Hardware solutions / Firmware
Vendor	Lenovo

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Incorrect default permissions

EUVDB-ID: #VU100428

Risk: Low

CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-21937

CWE-ID: CWE-276 - Incorrect Default Permissions

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect default permissions in the AMD HIP SDK installation directory. A local user can execute arbitrary code on the system with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

AMD Graphics Driver for Windows 11 (Version 24H2) and 10 (Version 22H2) - ThinkStation P8: All versions

AMD Discrete Graphics Driver for Windows 10 (Version 21H2), 11 (Version 21H2, 22H2) - ThinkStation P7 Intel: All versions

AMD Discrete VGA Driver for Windows 11 (Version 22H2) - ThinkStation P620: All versions

AMD Discrete Graphics Driver for RX7600 for Windows 10 (Version 22H2) - ThinkStation P520c: All versions

AMD Discrete Graphics Driver for Windows 10 (Version 21H2), 11 (Version 21H2, 22H2) - ThinkStation P5: All versions

AMD Discrete Graphics Driver for Windows 11 (Version 21H2 or Later) - ThinkStation P360: All versions

AMD Discrete Graphics Driver for W6400 for Windows 11 (Version 21H2, 22H2 or Later) - ThinkStation P360 Ultra: All versions

AMD Discrete Graphics Driver for W6400 for Windows 10 (Version 21H2, 22H2 or Later) - ThinkStation P360 Ultra: All versions

AMD Discrete Graphics Driver for Windows 11 (Version 22H2 or Later), 10 (Version 22H2) - ThinkStation P358: All versions

AMD IO Driver for Windows 11 (Version 22H2 or later) - ThinkPad P15v Gen 3 (Type 21EM, 21EN): All versions

AMD IO Driver for Windows 11 (Version 21H2), 10 (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM): All versions

AMD IO Driver for Windows 11 (Version 21H2) - ThinkPad P15v Gen 3 (Type 21EM, 21EN): All versions

AMD Graphics Driver Windows 11 (Version 21H2 or later), 10 64-bit (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM): All versions

AMD Graphics Driver for Windows 11 (Version 21H2) - ThinkPad P15v Gen 3 (Type 21EM, 21EN): All versions

AMD Graphics Driver for Windows 10 (Version 20H2 or later) - ThinkPad P15v Gen 3 (Type 21EN 21EM): All versions

LOQ 15AHP9: All versions

Legion Slim 5 16AHP9: All versions

ThinkBook 16 G7 ARP: All versions

ThinkBook 14 G7 ARP: All versions

ThinkStation P8 Workstation: All versions

ThinkStation P358 Workstation: All versions

ThinkPad Z16 Gen 2 21JY: All versions

ThinkPad Z16 Gen 2 21JX: All versions

ThinkPad Z13 Gen 2 21JW: All versions

ThinkPad Z13 Gen 2 21JV: All versions

ThinkBook 16 G6 ABP: All versions

ThinkBook 14 G6 ABP: All versions

Lenovo 13w Yoga Gen 2 82YS: All versions

Lenovo 13w Yoga Gen 2 82YR: All versions

Lenovo 13w Yoga 82S2: All versions

Lenovo 13w Yoga 82S1: All versions

ThinkCentre M75n: All versions

ThinkStation P620 Workstation: All versions

ThinkPad T16 Gen 2 21K8: All versions

ThinkPad T16 Gen 2 21K7: All versions

ThinkPad T14s Gen 4 21F9: All versions

ThinkPad T14s Gen 4 21F8: All versions

ThinkPad T14 Gen 4 21K4: All versions

ThinkPad T14 Gen 4 21K3: All versions

ThinkPad P16v Gen 1 21FF: All versions

ThinkPad P16v Gen 1 21FE: All versions

ThinkPad P16s Gen 2 21KA: All versions

ThinkPad P16s Gen 2 21K9: All versions

ThinkPad P15v Gen 3 21EM: All versions

ThinkPad P15v Gen 3 21EN: All versions

ThinkPad P14s Gen 4 21K6: All versions

ThinkPad P14s Gen 4 21K5: All versions

ThinkStation P360 Ultra Workstation: All versions

ThinkStation P7 Intel Workstation: All versions

ThinkStation P5 Workstation: All versions

ThinkStation P520c Workstation: All versions

ThinkStation P360 Workstation: All versions

AMD IO Driver for Windows 11 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2: before 2.2.0.134

AMD IO Driver for Windows 10 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2: before 2.2.0.134

AMD Graphics Driver for Windows 10 (Version 21H2 or later) - ThinkPad Z13 Gen 2, Z16 Gen 2: before 32.0.11030.8001

AMD IO Driver for Windows 11 (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF): before 2.2.0.134

AMD IO Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF): before 2.2.0.134

AMD Graphics Driver for Windows 11 (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF): before 32.0.11030.7006

AMD Graphics Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad P16v Gen 1 (Type 21FE, 21FF): before 32.0.11030.7006

AMD IO Driver for Windows 10 64-bit (Version 21H2 or later) - ThinkPad: before 2.2.0.134

AMD VGA Driver for Windows 11 (64-bit) - ThinkBook 14 G7 ARP, ThinkBook 16 G7 ARP: before 32.0.11022.4

AMD VGA Driver for Windows 11 (64-bit) - ThinkBook 14 G6 ABP, ThinkBook 16 G6 ABP: before 31.0.21914.6001

AMD VGA Driver for Windows 10 (64-bit) - ThinkBook 14 G6 ABP, ThinkBook 14 G6 ABP: before 31.0.21914.6001

AMD VGA Driver for Windows 11 (64-bit) - LOQ 15AHP9: before 32.0.11002.9001

AMD VGA Driver for Windows 11 (64-bit) - Legion Slim 5 16AHP9: before 32.0.11002.9001

AMD Graphics Driver for Windows 11 (Version 22H2 or later) - Lenovo 13w Yoga Gen 2 (Type 82YR, 82YS): before 31.0.21918.2005

AMD Graphics Driver for Windows 10 (Version 22H2 or later) - Lenovo 13w Yoga Gen 2: before 31.0.21918.2005

AMD Graphics Driver for Windows 11 (Version 21H2 or later) - Lenovo 13w Yoga (Type 82S1, 82S2): before 31.0.21918.2005

AMD Graphics Driver for Windows 10 64-bit (Version 21H2 or later) - Lenovo 13w Yoga (Type 82S1, 82S2): before 31.0.21918.2005

AMD Graphics Driver for Windows 10 IOT (64-bit) - ThinkCentre M75n: before 31.0.12018.16003

AMD Graphics Driver for Windows 10 64-bit (Version 1909 or later) - ThinkCentre M75n: before 31.0.12018.16003

CPE2.3

External links

https://support.lenovo.com/us/en/product_security/LEN-167315

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.