Vulnerabilidades em AMD
443 resultadosCVE-2025-48519HIGHAn improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or wEPSS 0.1%CVE-2025-52540HIGHAn improper input validation vulnerability within the AMD Platform Management Framework (PMF) Driver can allow a local attacker to write OutEPSS 0.1%CVE-2023-31313HIGHAn unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attacker to send malformed messagesEPSS 0.1%CVE-2023-20585MEDIUMInsufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger EPSS 0.1%CVE-2026-28237MEDIUMUnrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of avaEPSS 0.1%CVE-2025-62623HIGHA heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially EPSS 0.1%CVE-2025-29933MEDIUMImproper input validation within AMD uProf can allow a local attacker to write out of bounds, potentially resulting in a crash or denial of EPSS 0.1%CVE-2025-62627HIGHAn untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel meEPSS 0.1%CVE-2021-46747HIGHInsufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to mEPSS 0.1%CVE-2025-48511MEDIUMImproper input validation within AMD uprof can allow a local attacker to write to an arbitrary physical address, potentially resulting in crEPSS 0.1%CVE-2025-48502MEDIUMImproper input validation within AMD uprof can allow a local attacker to overwrite MSR registers, potentially resulting in crash or denial oEPSS 0.1%CVE-2024-36347MEDIUMImproper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicEPSS 0.1%CVE-2023-20518LOWIncomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shellEPSS 0.1%CVE-2024-36323HIGHImproper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine (VM) or a process to perform unauthorized accEPSS 0.1%CVE-2024-21950LOWAn out of bounds read in the remote management firmware could allow a privileged attacker read a limited section of memory outside of establEPSS 0.1%CVE-2023-31316HIGHImproperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) couldEPSS 0.1%CVE-2025-29934MEDIUMA bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resultiEPSS 0.1%CVE-2025-0007MEDIUMInsufficient validation within Xilinx Run Time framework could allow a local attacker to escalate privileges from user space to kernel spaceEPSS 0.1%CVE-2025-48516MEDIUMInsecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege toEPSS 0.1%CVE-2024-36334HIGHImproper verification of cryptographic signature in the Radeon RGB tool could allow a malicious file placed in the installation directory toEPSS 0.1%