CVE-2025-48511

Summary

Improper input validation within AMD uprof can allow a local attacker to write to an arbitrary physical address, potentially resulting in crash or denial of service.

Affected Software

VendorProductVersion RangeStatus
AMDAMD μProf5.0unaffected

Weaknesses

  • CWE-1285: CWE-1285 Improper Validation of Specified Index, Position, or Offset in Input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References