Skip to main content

AMD Secure Processor TEE SOC Driver EUVDEUVD-2025-209876

| CVE-2025-66664 MEDIUM
Out-of-bounds Read (CWE-125)
2026-05-15 AMD GHSA-gm2x-9p5x-p992
4.6
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
4.6 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
May 15, 2026 - 03:33 vuln.today
CVSS changed
May 15, 2026 - 03:22 NVD
4.6 (MEDIUM)
CVE Published
May 15, 2026 - 02:41 nvd
MEDIUM 4.6

DescriptionCVE.org

Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver memory contents exposure or an exception

AnalysisAI

Out-of-bounds read in AMD Secure Processor TEE SOC Driver allows high-privileged local attackers to trigger memory exposure or denial of service via malformed SR-IOV commands on Radeon RX 6000/7000, Pro W6000/W7000, and Instinct MI-series GPUs. Insufficient parameter sanitization in the DRV_SOC_CMD_ID_LOAD_GFX_IP_FW command handler permits crafted input to bypass bounds checks, exposing SOC Driver memory or causing exceptions. Attack requires high privilege level (PR:H) and local access (AV:L), limiting real-world exploitation to compromised administrative contexts or supply-chain scenarios.

Technical ContextAI

The AMD Secure Processor (ASP) is a dedicated Trusted Execution Environment (TEE) microcontroller integrated into AMD RDNA and CDNA GPUs, responsible for security-critical operations including firmware loading and validation. The SOC (System-on-Chip) Driver provides an interface between the host OS and the ASP, including SR-IOV (Single-Root I/O Virtualization) command channels for virtual machine contexts. The vulnerability resides in the DRV_SOC_CMD_ID_LOAD_GFX_IP_FW command handler, which processes firmware image load requests. The root cause is insufficient sanitization of command parameters before use in memory access operations, classified as CWE-125 (Out-of-Bounds Read). When a malformed SR-IOV command with invalid size or offset parameters reaches the handler, it bypasses bounds validation, permitting reads beyond allocated buffer boundaries. The affected GPUs span consumer (Radeon RX 6000/7000), professional (Pro W6000/W7000), and data-center (Instinct MI-series) product lines, all sharing the same ASP firmware architecture.

RemediationAI

AMD has released a security bulletin (AMD-SB-6027) documenting this vulnerability; consult that bulletin for specific firmware version recommendations and update procedures specific to each product line. Contact AMD support or visit https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html for detailed patching instructions and firmware availability by product series. For data-center environments (Instinct MI-series), coordinate updates with system firmware and driver update cycles to minimize downtime. If firmware updates are not yet available or cannot be immediately deployed, restrict SR-IOV virtual machine creation and guest GPU assignment to trusted administrative domains only, or disable GPU virtualization features entirely if the use case permits. Note that this vulnerability requires high privilege level (root/SYSTEM equivalent) on the host system, so it does not pose a risk from unprivileged guest VMs in properly isolated virtualization environments; however, guest-to-host escalation chains should be evaluated holistically with this flaw in mind.

More in Amd

View all
CVE-2021-22986 CRITICAL POC
9.8 Mar 31

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.

CVE-2020-6103 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6102 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6101 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6100 CRITICAL POC
9.9 Jul 20

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated criti

CVE-2018-6546 CRITICAL POC
9.8 Apr 13

plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming

CVE-2021-3653 HIGH POC
8.8 Sep 29

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. Rated high severity (CVSS 8.8), this vu

CVE-2020-12138 HIGH POC
8.8 Apr 27

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of se

CVE-2019-5098 HIGH POC
8.6 Dec 05

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. Rated high

CVE-2015-7724 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2015-7723 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2023-1048 HIGH POC
7.8 Feb 26

A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM Calculator 1.2.0.5.sys. Rate

Share

EUVD-2025-209876 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy