Primary

Context

AMD Trusted Execution Environment Out-of-Bounds Memory Access Vulnerability

Vulnerability

A vulnerability exists in the AMD Trusted Execution Environment (TEE) due to insufficient bounds checking. This flaw could enable an attacker with a compromised userspace to send commands with malformed arguments, leading to out-of-bounds memory access. Such access could potentially result in a loss of integrity or availability.

Impact

Exploitation of this vulnerability could cause out-of-bounds memory access, leading to potential memory corruption and a subsequent denial-of-service condition or unauthorized memory access.

Remediation

Users are advised to update to the latest Platform Initialization (PI) firmware version. Specific update versions can be found in the AMD Security Bulletin AMD-SB-4012.

Added: Sep 6, 2025, 2:52 AM

Updated: Sep 6, 2025, 2:52 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD Trusted Execution Environment Out-of-Bounds Memory Access Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating