Primary

Context

AMD ASP Out-of-Bounds Read Vulnerability Allowing Privileged Memory Access

Vulnerability

A vulnerability has been identified in the AMD Application Security Processor (ASP) that allows for an out-of-bounds read. This issue could enable a privileged attacker with access to a malicious bootloader to read sensitive memory, potentially leading to a loss of confidentiality. The vulnerability affects several AMD Client Processor platforms, including Ryzen and Athlon mobile processors, as well as AMD Embedded processors.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive memory, causing a breach of confidentiality.

Remediation

Users are advised to update to the latest Platform Initialization (PI) firmware version. Specific update instructions can be obtained from the original equipment manufacturer (OEM).

Added: Sep 6, 2025, 6:57 PM

Updated: Sep 6, 2025, 6:57 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

1.4

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

1.4

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD ASP Out-of-Bounds Read Vulnerability Allowing Privileged Memory Access

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating