Vulnerabilidades em AMD
443 resultadosCVE-2025-29935HIGHAn out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated pEPSS 0.1%CVE-2023-31306LOWImproper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamicEPSS 0.1%CVE-2025-29938HIGHAn unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory addressEPSS 0.1%CVE-2021-26396MEDIUMInsufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss of memory integrity in the SNP guest.
EPSS 0.1%CVE-2025-0010MEDIUMAn out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidenEPSS 0.1%CVE-2023-31309MEDIUMImproper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when expoEPSS 0.1%CVE-2025-0031MEDIUMA use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a diffeEPSS 0.1%CVE-2025-66664MEDIUMInsufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_IDEPSS 0.1%CVE-2026-0427MEDIUMImproper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine (VM) to EPSS 0.1%CVE-2025-0045MEDIUMImproper Input validation in the AMD Secure Processor (ASP) PCI driver may allow a local attacker to create a buffer overflow condition, potEPSS 0.1%CVE-2025-52539HIGHA buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interfaceEPSS 0.1%CVE-2025-48510HIGHImproper return value within AMD uProf can allow a local attacker to bypass KSLR, potentially resulting in loss of confidentiality or availaEPSS 0.1%CVE-2025-54515LOWThe Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors (TF-A) for Arm’s Power State Coordination InterfaEPSS 0.1%CVE-2025-62628HIGHUnsafe OpenSSL initialization within some AMD optional tools may allow a local user-privileged attacker to inject a malicious DLL, potentialEPSS 0.1%CVE-2025-0005HIGHImproper input validation within the XOCL driver may allow a local attacker to generate an integer overflow condition, potentially resultingEPSS 0.1%CVE-2025-54510MEDIUMA missing lock verification in AMD Secure Processor (ASP) firmware may permit a locally authenticated attacker with administrative privilegeEPSS 0.1%CVE-2024-36345MEDIUMImproper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an outEPSS 0.1%CVE-2023-31365LOWAn integer overflow in the SMU could allow a privileged attacker to potentially write memory beyond the end of the reserved dRAM area resultEPSS 0.1%CVE-2025-62624HIGHA heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially EPSS 0.1%CVE-2025-48512HIGHIncorrect default permissions in the installation directory for the AMD general-purpose input/output controller (GPIO) could allow an attackEPSS 0.1%