9.2
CVE-2026-0481
- EPSS 0.2%
- Veröffentlicht 15.05.2026 03:04:56
- Zuletzt bearbeitet 15.05.2026 14:10:17
- Quelle psirt@amd.com
- CVE-Watchlists
- Unerledigt
Unrestricted IP address binding in the AMD Device Metrics Exporter (ROCm ecosystem) could allow a remote attacker to perform unauthorized changes to the GPU configuration, potentially resulting in loss of availability
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD Instinct™ MI210
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI250
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI300A
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI300X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI325X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI350X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI355X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI308X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
HerstellerAMD
≫
Produkt
AMD Instinct™ MI250X
Default Statusaffected
Version
DME v1.4.1.2 and v1.4.0.1
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.2% | 0.419 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 9.2 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-1327 Binding to an Unrestricted IP Address
The product assigns the address 0.0.0.0 for a database server, a cloud service/instance, or any computing resource that communicates remotely.