Skip to main content

AMD Instinct MI Series CVE-2026-0428

| EUVDEUVD-2026-30500 LOW
Improper Validation of Specified Quantity in Input (CWE-1284)
2026-05-15 AMD GHSA-ccr7-r78x-7jpq
1.8
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
1.8 LOW
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
May 15, 2026 - 03:32 vuln.today
CVSS changed
May 15, 2026 - 03:22 NVD
1.8 (LOW)
CVE Published
May 15, 2026 - 02:41 nvd
LOW 1.8

DescriptionCVE.org

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior.

AnalysisAI

Insufficient parameter sanitization in TEE SOC Driver on AMD Instinct MI300A, MI300X, MI308X, and MI325X accelerators allows local high-privileged attackers to issue malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS commands that write invalid data to remote Dies, resulting in availability impact through unexpected behavior. The vulnerability requires local access and high privileges, with a CVSS score of 1.8 indicating minimal real-world risk despite potential data integrity concerns.

Technical ContextAI

The TEE (Trusted Execution Environment) SOC Driver in AMD Instinct MI-series accelerators handles SR-IOV (Single Root Input/Output Virtualization) chiplet register operations via the DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS command. The root cause is insufficient input validation (CWE-1284: Improper Validation of Specified Quantity in Input) when processing parameters for this command, allowing malformed requests to bypass sanitization checks. The affected products include MI300A, MI300X, MI308X, and MI325X accelerators used in high-performance computing and AI workloads. The vulnerability specifically impacts the driver's ability to validate data before writing to remote chiplet registers in multi-GPU configurations.

RemediationAI

Apply the security update provided by AMD in bulletin AMD-SB-6027, which addresses the TEE SOC Driver parameter sanitization flaw. Download the patched driver firmware from AMD's product security page and apply according to your accelerator deployment model and data center management tools. No workarounds are available for this driver-level vulnerability; firmware update is required. If immediate patching is not feasible, restrict physical and administrative access to systems with MI-series accelerators to trusted personnel only, and monitor system logs for unexpected chiplet register write operations. AMD-SB-6027 contains the exact patched firmware versions and deployment guidance for your specific accelerator SKU.

Share

CVE-2026-0428 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy