Vulnerability-Lookup

CVE-2025-0010 (GCVE-0-2025-0010)

Vulnerability from cvelistv5 – Published: 2025-09-06 18:26 – Updated: 2025-09-08 19:56

Summary

An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.

Severity

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

CWE

CWE-787 - Out-of-bounds Write

Assigner

AMD

References

1 reference

URL	Tags
https://www.amd.com/en/resources/product-security…

Impacted products

36 products

Vendor	Product	Version
AMD	AMD Radeon™ RX 5000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ RX 6000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ RX 7000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ RX Vega Series Graphics Cards	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ PRO W5000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ PRO W6000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ PRO W7000 Series Graphics Products	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Radeon™ VII	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Instinct™ MI200	Unaffected: ROCm 6.3
AMD	AMD Instinct™ MI210	Unaffected: ROCm 6.3
AMD	AMD Instinct™ MI250	Unaffected: ROCm 6.3
AMD	AMD Instinct™ MI300A	Unaffected: ROCm 6.3
AMD	AMD Instinct™ MI300X	Unaffected: ROCm 6.3
AMD	AMD Radeon™ PRO V520 Graphics Products	Unaffected: Contact your AMD Customer Engineering representative
AMD	AMD Radeon™ PRO V620 Graphics Products	Unaffected: Contact your AMD Customer Engineering representative
AMD	AMD Radeon™ PRO V710 Graphics Products	Unaffected: Contact your AMD Customer Engineering representative
AMD	AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ AI 300 Series Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 7000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 8000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 9000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 4000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 5000 Series Desktop Processors	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2
AMD	AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics	Unaffected: Radeon Software for Linux 24.30.2

Date Public

2025-09-06 18:04

Credits

Reported through AMD Bug Bounty Program

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-0010",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-09-08T19:56:34.478973Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-09-08T19:56:43.287Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 RX 5000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 RX 6000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 RX 7000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 RX Vega Series Graphics Cards",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO W5000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO W6000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO W7000 Series Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 VII",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Instinct\u2122 MI200",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ROCm 6.3"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Instinct\u2122 MI210",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ROCm 6.3"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Instinct\u2122 MI250",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ROCm 6.3"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Instinct\u2122 MI300A",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ROCm 6.3"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Instinct\u2122 MI300X",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ROCm 6.3"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO V520 Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Contact your AMD Customer Engineering representative"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO V620 Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Contact your AMD Customer Engineering representative"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Radeon\u2122 PRO V710 Graphics Products",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Contact your AMD Customer Engineering representative"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 4000 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7035 Series Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7040 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7020 Series Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7045 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7030 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 AI 300 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Athlon\u2122 3000 Series Desktop Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 8000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 9000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 4000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 5000 Series Desktop Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 5000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 8040 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 6000 Series Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Radeon Software for Linux 24.30.2"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Reported through AMD Bug Bounty Program"
        }
      ],
      "datePublic": "2025-09-06T18:04:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.\u003cbr\u003e"
            }
          ],
          "value": "An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "CWE-787  Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-06T18:26:15.118Z",
        "orgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
        "shortName": "AMD"
      },
      "references": [
        {
          "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "AMD PSIRT Automation 1.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
    "assignerShortName": "AMD",
    "cveId": "CVE-2025-0010",
    "datePublished": "2025-09-06T18:26:15.118Z",
    "dateReserved": "2024-10-10T20:27:46.721Z",
    "dateUpdated": "2025-09-08T19:56:43.287Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-0010",
      "date": "2026-05-27",
      "epss": "0.00018",
      "percentile": "0.04855"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-0010\",\"sourceIdentifier\":\"psirt@amd.com\",\"published\":\"2025-09-06T19:15:37.880\",\"lastModified\":\"2025-09-08T16:25:38.810\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.3,\"impactScore\":4.7}]},\"weaknesses\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"references\":[{\"url\":\"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html\",\"source\":\"psirt@amd.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-0010\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-09-08T19:56:34.478973Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-09-08T19:56:39.162Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Reported through AMD Bug Bounty Program\"}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.1, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 RX 5000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 RX 6000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 RX 7000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 RX Vega Series Graphics Cards\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO W5000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO W6000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO W7000 Series Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 VII\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Instinct\\u2122 MI200\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ROCm 6.3\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Instinct\\u2122 MI210\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ROCm 6.3\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Instinct\\u2122 MI250\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ROCm 6.3\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Instinct\\u2122 MI300A\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ROCm 6.3\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Instinct\\u2122 MI300X\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ROCm 6.3\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO V520 Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Contact your AMD Customer Engineering representative\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO V620 Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Contact your AMD Customer Engineering representative\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Radeon\\u2122 PRO V710 Graphics Products\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Contact your AMD Customer Engineering representative\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 4000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7035 Series Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Athlon\\u2122 3000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7040 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7020 Series Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7045 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7030 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 AI 300 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Athlon\\u2122 3000 Series Desktop Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 8000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 9000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 4000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Desktop Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 8040 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 3000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 6000 Series Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Radeon Software for Linux 24.30.2\"}], \"defaultStatus\": \"affected\"}], \"datePublic\": \"2025-09-06T18:04:00.000Z\", \"references\": [{\"url\": \"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html\"}], \"x_generator\": {\"engine\": \"AMD PSIRT Automation 1.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787  Out-of-bounds Write\"}]}], \"providerMetadata\": {\"orgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"shortName\": \"AMD\", \"dateUpdated\": \"2025-09-06T18:26:15.118Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-0010\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-09-08T19:56:43.287Z\", \"dateReserved\": \"2024-10-10T20:27:46.721Z\", \"assignerOrgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"datePublished\": \"2025-09-06T18:26:15.118Z\", \"assignerShortName\": \"AMD\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2025-0010

Vulnerability from fkie_nvd - Published: 2025-09-06 19:15 - Updated: 2026-04-15 00:35

Severity

6.1 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

Summary

An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.

References

	URL	Tags
	psirt@amd.com	https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability."
    }
  ],
  "id": "CVE-2025-0010",
  "lastModified": "2026-04-15T00:35:42.020",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.3,
        "impactScore": 4.7,
        "source": "psirt@amd.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-09-06T19:15:37.880",
  "references": [
    {
      "source": "psirt@amd.com",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html"
    }
  ],
  "sourceIdentifier": "psirt@amd.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "psirt@amd.com",
      "type": "Secondary"
    }
  ]
}

GHSA-8HGC-V7H6-7V8J

Vulnerability from github – Published: 2025-09-06 21:30 – Updated: 2025-09-06 21:30

Details

An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.

Severity

6.1 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-0010"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-09-06T19:15:37Z",
    "severity": "MODERATE"
  },
  "details": "An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.",
  "id": "GHSA-8hgc-v7h6-7v8j",
  "modified": "2025-09-06T21:30:19Z",
  "published": "2025-09-06T21:30:19Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-0010"
    },
    {
      "type": "WEB",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2025-1767

Vulnerability from csaf_certbund - Published: 2025-08-12 22:00 - Updated: 2025-08-12 22:00

Summary

AMD Radeon Graphics Products: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Radeon bezeichnet eine Familie von Grafikkarten von AMD.

Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen in AMD Radeon ausnutzen, um sich erhöhte Privilegien zu verschaffen, beliebigen Code auszuführen, einen Denial of Service-Zustand herbeizuführen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder nicht näher spezifizierte Angriffe durchzuführen.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2021-26377

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2021-26383

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2021-46745

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2021-467451

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2021-46750

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-20511

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-20516

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31306

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31308

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31322

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31325

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31326

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2023-31365

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2024-36312

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2024-36342

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2024-36346

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2024-36352

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2025-0009

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2025-0010

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2025-0011

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2025-0034

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

CVE-2025-48508

Affected products

Known affected 3 products

Product	Identifier	Version
AMD Radeon graphics products AMD / Radeon	`cpe:/h:amd:radeon:graphics_products`	graphics products
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.amd.com/en/resources/product-security…	external
https://www.dell.com/support/kbdoc/de-de/00032805…	external
https://support.lenovo.com/us/en/product_security…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Radeon bezeichnet eine Familie von Grafikkarten von AMD.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in AMD Radeon ausnutzen, um sich erh\u00f6hte Privilegien zu verschaffen, beliebigen Code auszuf\u00fchren, einen Denial of Service-Zustand herbeizuf\u00fchren, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1767 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1767.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1767 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1767"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin AMD-SB-6018 vom 2025-08-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6018.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-231 vom 2025-08-12",
        "url": "https://www.dell.com/support/kbdoc/de-de/000328052/dsa-2025-231"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-196649 vom 2025-08-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-196649"
      }
    ],
    "source_lang": "en-US",
    "title": "AMD Radeon Graphics Products: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-08-12T22:00:00.000+00:00",
      "generator": {
        "date": "2025-08-13T06:22:17.202+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-1767",
      "initial_release_date": "2025-08-12T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-08-12T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "graphics products",
                "product": {
                  "name": "AMD Radeon graphics products",
                  "product_id": "T046082",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:amd:radeon:graphics_products"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Radeon"
          }
        ],
        "category": "vendor",
        "name": "AMD"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell Computer",
            "product": {
              "name": "Dell Computer",
              "product_id": "T036868",
              "product_identification_helper": {
                "cpe": "cpe:/o:dell:dell_computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Lenovo Computer",
            "product": {
              "name": "Lenovo Computer",
              "product_id": "T026557",
              "product_identification_helper": {
                "cpe": "cpe:/h:lenovo:computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Lenovo"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-26377",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2021-26377"
    },
    {
      "cve": "CVE-2021-26383",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2021-26383"
    },
    {
      "cve": "CVE-2021-46745",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2021-46745"
    },
    {
      "cve": "CVE-2021-467451",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2021-467451"
    },
    {
      "cve": "CVE-2021-46750",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2021-46750"
    },
    {
      "cve": "CVE-2023-20511",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-20511"
    },
    {
      "cve": "CVE-2023-20516",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-20516"
    },
    {
      "cve": "CVE-2023-31306",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31306"
    },
    {
      "cve": "CVE-2023-31308",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31308"
    },
    {
      "cve": "CVE-2023-31322",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31322"
    },
    {
      "cve": "CVE-2023-31325",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31325"
    },
    {
      "cve": "CVE-2023-31326",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31326"
    },
    {
      "cve": "CVE-2023-31365",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2023-31365"
    },
    {
      "cve": "CVE-2024-36312",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2024-36312"
    },
    {
      "cve": "CVE-2024-36342",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2024-36342"
    },
    {
      "cve": "CVE-2024-36346",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2024-36346"
    },
    {
      "cve": "CVE-2024-36352",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2024-36352"
    },
    {
      "cve": "CVE-2025-0009",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-0009"
    },
    {
      "cve": "CVE-2025-0010",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-0010"
    },
    {
      "cve": "CVE-2025-0011",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-0011"
    },
    {
      "cve": "CVE-2025-0034",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-0034"
    },
    {
      "cve": "CVE-2025-48508",
      "product_status": {
        "known_affected": [
          "T046082",
          "T036868",
          "T026557"
        ]
      },
      "release_date": "2025-08-12T22:00:00.000+00:00",
      "title": "CVE-2025-48508"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-0010 (GCVE-0-2025-0010)

FKIE_CVE-2025-0010

GHSA-8HGC-V7H6-7V8J

WID-SEC-W-2025-1767

Tags

Sightings

Nomenclature