CVE-2025-54517

Summary

Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Instinct™ MI250GIM Driver 8.4unaffected
AMDAMD Instinct™ MI308XGIM Driver 8.4unaffected
AMDAMD Instinct™ MI300AGIM Driver 8.4unaffected
AMDAMD Instinct™ MI300XGIM Driver 8.4unaffected
AMDAMD Instinct™ MI325XGIM Driver 8.4unaffected
AMDAMD Instinct™ MI210GIM Driver 8.4unaffected
AMDAMD Radeon™ PRO V620Contact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V710Contact your AMD Customer Engineering representativeunaffected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References