CVE-2025-48518

Summary

Improper input validation in AMD Graphics Driver could allow a local attacker to write out of bounds, potentially resulting in loss of integrity or denial of service.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 25.6.1 (25.10.x.y), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Ryzen™ AI 300 Series ProcessorsAMD Software: Adrenalin Edition 25.6.1 (25.10.x.y), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Ryzen™ 8000 Series Desktop ProcessorsAMD Software: Adrenalin Edition 25.6.1 (25.10.x.y), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Ryzen™ 8040 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 25.6.1 (25.10.x.y), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Ryzen™ Al Max+AMD Software: Adrenalin Edition 25.6.1 (25.10.x.y), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Ryzen™ Embedded 8000 Series ProcessorsAMD Software: Adrenalin Edition 25.6.1 , AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Radeon™ RX 9000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10)unaffected
AMDAMD Radeon™ PRO V710Contact your AMD Customer Engineering representativeunaffected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References