Skip to main content

AMD Platform Management Framework EUVD-2025-209868

| CVE-2025-29937 MEDIUM
Out-of-bounds Read (CWE-125)
2026-05-15 AMD GHSA-qr28-7prp-37fx
Buffer Overflow Information Disclosure Amd
5.8
CVSS 4.0
Share

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
May 15, 2026 - 03:32 vuln.today
CVSS changed
May 15, 2026 - 03:22 NVD
5.8 (MEDIUM)
CVE Published
May 15, 2026 - 01:52 nvd
MEDIUM 5.8

DescriptionNVD

An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality.

AnalysisAI

Out-of-bounds read in AMD Platform Management Framework (PMF) allows authenticated local attackers to read arbitrary memory locations, potentially disclosing sensitive information or causing availability loss on affected Ryzen processors. The vulnerability requires local access and low privileges but can be triggered without user interaction. AMD released a security bulletin (AMD-SB-4015) describing the issue; active exploitation status not confirmed at time of analysis.

Technical ContextAI

The AMD Platform Management Framework is a firmware/driver component responsible for managing processor power, thermal, and security features across AMD Ryzen platforms. The vulnerability is an out-of-bounds read (CWE-125), a memory safety flaw where the PMF reads beyond allocated buffer boundaries. This can expose kernel or firmware memory contents to a local, low-privileged process. The affected CPE strings span multiple Ryzen processor families (Ryzen 6000, 7035, 7040, 8040 mobile series, and Ryzen Embedded 8000 series), indicating the vulnerability is in platform firmware or associated drivers that ship with these processor SKUs rather than the processors themselves.

RemediationAI

AMD released security bulletin AMD-SB-4015 (https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4015.html) describing the vulnerability; users should consult this bulletin for specific patched firmware/driver versions for their processor family and OEM system. For most affected systems, remediation involves updating to the latest BIOS/UEFI firmware from the system OEM that incorporates the corrected PMF code. Patch availability and specific fixed versions should be obtained directly from the OEM (laptop/desktop manufacturer) or AMD's support channels, as the bulletin is the authoritative source. Interim mitigation for high-security environments includes restricting local user access to privileged interfaces that interact with PMF (e.g., power management APIs, thermal monitoring APIs) via OS-level access controls, though this may degrade user-facing power and thermal management features. Systems with strong local user isolation (containerized, virtualized, or single-user workstations) face reduced practical risk pending patch application.

More from same product – last 7 days

CVE-2026-44210 MEDIUM
May 26

VM escape in Kata Containers allows any Kubernetes user with pod-creation rights to break out of the VM sandbox and gain
CVE-2026-45878
May 27

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking in debug a
CVE-2026-46052
May 27

In the Linux kernel, the following vulnerability has been resolved: ceph: only d_add() negative dentries when they are

CVE-2026-46174
May 28

In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared r

Share

EUVD-2025-209868 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy