Primary

Context

AMD Graphics and Processor Products Integer Overflow Vulnerability Allowing Memory Write Beyond Allocated DRAM

Vulnerability

An integer overflow vulnerability has been identified in the System Management Unit (SMU) of certain AMD graphics and processor products. This vulnerability could enable a privileged attacker to write memory beyond the end of the reserved DRAM area, potentially leading to a loss of integrity or availability. The issue arises from insufficient bounds checking, allowing for out-of-bounds memory access.

Impact

Exploitation of this vulnerability could result in unauthorized memory writes, causing corruption of data or disruption of services, and potentially allowing for further exploitation of the system.

Remediation

Users are advised to update to the latest version of the AMD Software: Adrenalin Edition 24.10.1 or AMD Software: PRO Edition 24.Q4. For AMD Radeon graphics cards, refer to the specific tables for the appropriate version. Instructions for updating can be found on the AMD website.

Added: Sep 7, 2025, 1:26 AM

Updated: Sep 7, 2025, 1:26 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.8

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.8

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD Graphics and Processor Products Integer Overflow Vulnerability Allowing Memory Write Beyond Allocated DRAM

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating