Skip to main content

AMD Secure Processor PCI Driver CVE-2025-48521

| EUVDEUVD-2025-209863 MEDIUM
Use After Free (CWE-416)
2026-05-15 AMD GHSA-wf3c-3hhh-c9vv
6.9
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.9 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

4
Analysis Generated
May 15, 2026 - 04:16 vuln.today
CVSS changed
May 15, 2026 - 02:22 NVD
6.9 (MEDIUM)
CVE Published
May 15, 2026 - 01:45 nvd
UNKNOWN (no severity yet)
CVE Published
May 15, 2026 - 01:45 nvd
MEDIUM 6.9

DescriptionCVE.org

Improper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity or crash.

AnalysisAI

Use-After-Free vulnerability in the AMD Secure Processor (ASP) PCI driver affects multiple Ryzen, Threadripper, EPYC, and Athlon processor families due to improper input validation. A local attacker with user-level privileges can trigger the UAF condition, resulting in denial of service via platform crash or potential loss of platform integrity. Vendor-released patch: AMD Ryzen Chipset Driver 7.02.13.148 (or equivalent Catalyst driver versions for embedded SKUs). No public exploit identified at time of analysis.

Technical ContextAI

The vulnerability exists in the AMD Secure Processor PCI driver, which manages communication between the main CPU and the integrated Secure Processor (ASP) - a dedicated security coprocessor present in modern AMD Ryzen, EPYC, and related architectures. The root cause is CWE-416 (Use-After-Free), where the driver fails to properly validate input before dereferencing memory pointers, allowing a freed memory region to be accessed after deallocation. This affects the PCI driver component that handles device I/O and memory mapping operations. The vulnerability is triggered through local access via the PCI interface, affecting systems running Windows (based on Catalyst driver references) across desktop, mobile, and server processor lines from AMD's Ryzen 3000-series through Ryzen 9000-series, Threadripper families, EPYC 4004/4005/8004/9000-series, and embedded variants.

RemediationAI

Vendor-released patch: Install AMD Ryzen Chipset Driver 7.02.13.148 for Ryzen, Threadripper, and EPYC consumer/server lines, or equivalent Catalyst driver version 25.6.1 (68926) for Embedded Ryzen 7000/8000/9000-series, version 25Q3 (71251) for Embedded R1000/V1000-series, version 25Q3 (68914) for Embedded R2000/V2000-series, and AM5 Windows Chipset Drivers with Digital Signature Fix (64284) for EPYC Embedded 4005/4004-series. Updates available from AMD security bulletins AMD-SB-4015 and AMD-SB-3047 at https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4015.html and https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3047.html. If immediate patching is not possible, compensating controls include restricting local user account access to systems (remove non-essential user accounts), disabling local console access where feasible, and isolating systems from untrusted network users via air-gapping or segmentation - however, these do not fully mitigate the vulnerability for legitimate local users. Deployment in virtualized environments with strict VM-to-host isolation reduces risk but does not eliminate it if guest VMs can interact with host ASP via PCI. Prioritize patching multi-user systems, shared access environments, and systems hosting untrusted code.

More in Amd

View all
CVE-2021-22986 CRITICAL POC
9.8 Mar 31

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.

CVE-2020-6103 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6102 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6101 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6100 CRITICAL POC
9.9 Jul 20

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated criti

CVE-2018-6546 CRITICAL POC
9.8 Apr 13

plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming

CVE-2021-3653 HIGH POC
8.8 Sep 29

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. Rated high severity (CVSS 8.8), this vu

CVE-2020-12138 HIGH POC
8.8 Apr 27

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of se

CVE-2019-5098 HIGH POC
8.6 Dec 05

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. Rated high

CVE-2015-7724 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2015-7723 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2023-1048 HIGH POC
7.8 Feb 26

A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM Calculator 1.2.0.5.sys. Rate

Share

CVE-2025-48521 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy