CVE-2025-48513 | THREATINT

Description

Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability.

PUBLISHED Reserved 2025-05-22 | Published 2026-05-15 | Updated 2026-05-15 | Assigner AMD

MEDIUM: 6.9CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-908 Use of Uninitialized Resource

Product status

Default status

affected

7.06.02.123

unaffected

Default status

affected

7.06.02.123

unaffected

Default status

affected

7.06.02.123

unaffected

Default status

affected

7.06.02.123

unaffected

Default status

affected

7.06.02.123

unaffected

Default status

affected

AMD Ryzen™ Chipset Driver 7.06.02.123

unaffected

Credits

Reported through AMD Bug Bounty Program

References

www.amd.com/...es/product-security/bulletin/AMD-SB-4015.html

cve.org (CVE-2025-48513)

nvd.nist.gov (CVE-2025-48513)

Download JSON

help @ threatint.eu