CVE-2026-0427 | THREATINT

Description

Improper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine (VM) to access these shared resources from another Guest VM, potentially resulting in the loss of confidentiality, integrity, or availability.

PUBLISHED Reserved 2025-12-06 | Published 2026-05-15 | Updated 2026-05-15 | Assigner AMD

MEDIUM: 4.6CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L

Problem types

CWE-459 Incomplete Cleanup

Product status

Default status

affected

GIM 8.2.0.K

unaffected

Default status

affected

GIM 8.2.0.K

unaffected

Default status

affected

GIM 8.2.0.K

unaffected

Default status

affected

Contact your AMD Customer Engineering representative

unaffected

References

www.amd.com/...es/product-security/bulletin/AMD-SB-6027.html

cve.org (CVE-2026-0427)

nvd.nist.gov (CVE-2026-0427)

Download JSON

help @ threatint.eu