CVE-2025-0034 | THREATINT

Description

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_SPATIAL_PART and cause read or write past the end of allocated arrays, potentially resulting in a loss of platform integrity or denial of service.

PUBLISHED Reserved 2024-11-21 | Published 2025-09-06 | Updated 2025-09-08 | Assigner AMD

MEDIUM: 4.7CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

Problem types

CWE-787 Out-of-bounds Write

Product status

Default status

affected

ROCm 6.3

unaffected

Default status

affected

ROCm 6.3

unaffected

References

www.amd.com/...es/product-security/bulletin/AMD-SB-6018.html

cve.org (CVE-2025-0034)

nvd.nist.gov (CVE-2025-0034)

Download JSON

help @ threatint.eu