Skip to main content

AMD Instinct GPU CVE-2025-54517

| EUVDEUVD-2025-209879 HIGH
Out-of-bounds Write (CWE-787)
2026-05-15 AMD GHSA-84gc-54qf-v3jp
8.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
8.5 HIGH
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
May 15, 2026 - 03:31 vuln.today
CVSS changed
May 15, 2026 - 03:22 NVD
8.5 (HIGH)
CVE Published
May 15, 2026 - 02:44 nvd
HIGH 8.5

DescriptionCVE.org

Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution.

AnalysisAI

Buffer overflow in AMD GPU driver IOCTL handler enables local privilege escalation to root on Linux systems running AMD Instinct or Radeon Pro GPUs. Authenticated local users with low privileges can exploit an out-of-bounds write vulnerability in the AMDGV_CMD_GET_DIAG_DATA IOCTL to achieve arbitrary kernel code execution. EPSS data not available; no public exploit or CISA KEV listing identified at time of analysis, suggesting limited active exploitation despite high CVSS 8.5 severity.

Technical ContextAI

This vulnerability affects the AMD GPU driver kernel module, specifically the IOCTL (input/output control) handler for the AMDGV_CMD_GET_DIAG_DATA diagnostic command. IOCTL handlers are privileged kernel-space interfaces that allow user-space applications to communicate with device drivers. The CWE-787 classification indicates an out-of-bounds write vulnerability, where the driver writes data beyond allocated buffer boundaries during diagnostic data retrieval operations. Affected products span AMD's data center GPU portfolio including Instinct MI200/MI300 series accelerators (MI210, MI250, MI300A, MI300X, MI308X, MI325X) and Radeon Pro virtualization GPUs (V620, V710). These are high-performance computing and AI acceleration products typically deployed in enterprise data centers, cloud infrastructure, and virtualized environments where GPU passthrough or SR-IOV configurations may be used.

RemediationAI

Apply AMD-released driver updates specified in Security Bulletin AMD-SB-6027 (https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html). Organizations should prioritize patching systems in multi-user environments where local access is granted to multiple accounts. As interim mitigation where patching cannot be immediately deployed, restrict local user access to affected GPU systems through operating system access controls, disable diagnostic IOCTL interfaces if operationally feasible via kernel module parameters or SELinux/AppArmor policies (noting this may impact legitimate monitoring tools), and enhance monitoring for unusual privilege escalation attempts or unexpected kernel module interactions. For virtualized GPU deployments using SR-IOV or GPU passthrough, consider temporarily removing GPU assignments from untrusted guest VMs until patching is complete, though this impacts workload functionality. In shared HPC clusters, implement stricter job scheduler policies to isolate untrusted users until remediation. These compensating controls reduce attack surface but do not eliminate the vulnerability and should be treated as temporary measures pending full driver updates.

More in Amd

View all
CVE-2021-22986 CRITICAL POC
9.8 Mar 31

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.

CVE-2020-6103 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6102 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6101 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6100 CRITICAL POC
9.9 Jul 20

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated criti

CVE-2018-6546 CRITICAL POC
9.8 Apr 13

plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming

CVE-2021-3653 HIGH POC
8.8 Sep 29

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. Rated high severity (CVSS 8.8), this vu

CVE-2020-12138 HIGH POC
8.8 Apr 27

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of se

CVE-2019-5098 HIGH POC
8.6 Dec 05

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. Rated high

CVE-2015-7724 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2015-7723 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2023-1048 HIGH POC
7.8 Feb 26

A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM Calculator 1.2.0.5.sys. Rate

Share

CVE-2025-54517 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy