AMD Ryzen Master is an official utility from AMD that allows users to monitor and overclock their AMD Ryzen CPUs, featuring both an advanced and basic, user-friendly interface for tweaking clock speed, voltage, temperature, and more. According to a new entry on AMD’s security bulletin, a high-severity vulnerability (CVE-2022-27677) had been discovered in the software, something that may allow an attacker with low privileges to modify files, leading to privilege escalation and code execution by the lower-privileged user. AMD is recommending Ryzen Master users to update to its latest firmware, a direct link to which can be found here.
From an AMD Product Security post:
AMD Ryzen Master is a software tool that gives users advanced, real-time control of system performance. AMD Ryzen Master allows the user to control various clock and voltage settings in real time.
Failure to validate privileges during installation of AMD Ryzen Master may allow an attacker with low privileges to modify files potentially leading to privilege escalation and code execution by the lower privileged user.