Description
Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver memory contents exposure or an exception
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
Low
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
Low
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
Affected products
- AMD / AMD Instinct™ MI210ROCm 7.0 – ROCm 7.0
- AMD / AMD Instinct™ MI250ROCm 7.0 – ROCm 7.0
- AMD / AMD Instinct™ MI300ABKC 26 (ROCm 7.0.1) – BKC 26 (ROCm 7.0.1)
- AMD / AMD Instinct™ MI300XROCm 6.3.1 – ROCm 6.3.1
- AMD / AMD Instinct™ MI308XROCm 6.4.2 – ROCm 6.4.2
- AMD / AMD Instinct™ MI325XROCm 6.3.1 – ROCm 6.3.1
- AMD / AMD Radeon™ PRO V520Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO V620Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO V710Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 25.Q4 (25.10.37.01) – AMD Software: PRO Edition 25.Q4 (25.10.37.01)
- AMD / AMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: PRO Edition 25.Q3.1 (25.10.32) – AMD Software: PRO Edition 25.Q3.1 (25.10.32)
- AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.12.1 (25.10.37.01) – AMD Software: Adrenalin Edition 25.12.1 (25.10.37.01)
- AMD / AMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.11.1 (25.20.29.01) – AMD Software: Adrenalin Edition 25.11.1 (25.20.29.01)