6.9

CVE-2025-48513

Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
Produkt AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R")
Default Statusaffected
Version 7.06.02.123
Status unaffected
HerstellerAMD
Produkt AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix")
Default Statusaffected
Version 7.06.02.123
Status unaffected
HerstellerAMD
Produkt AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point")
Default Statusaffected
Version 7.06.02.123
Status unaffected
HerstellerAMD
Produkt AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt")
Default Statusaffected
Version 7.06.02.123
Status unaffected
HerstellerAMD
Produkt AMD Ryzen™ Z1 Series Processors
Default Statusaffected
Version 7.06.02.123
Status unaffected
HerstellerAMD
Produkt AMD Ryzen™ Embedded 8000 Series Processors
Default Statusaffected
Version AMD Ryzen™ Chipset Driver 7.06.02.123
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.01% 0.029
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
psirt@amd.com 6.9 0 0
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.