CVE-2025-54517 | THREATINT

Description

Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution.

PUBLISHED Reserved 2025-07-23 | Published 2026-05-15 | Updated 2026-05-16 | Assigner AMD

HIGH: 8.5CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-787 Out-of-bounds Write

Product status

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

GIM Driver 8.4

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

Credits

Reported through AMD Bug Bounty Program

References

www.amd.com/...es/product-security/bulletin/AMD-SB-6027.html

cve.org (CVE-2025-54517)

nvd.nist.gov (CVE-2025-54517)

Download JSON

help @ threatint.eu