Primary

Context

AMD Crash Defender Improper Information Removal Vulnerability Allowing Kernel Address Disclosure

Vulnerability

A vulnerability exists in AMD Crash Defender due to improper removal of sensitive information before storage or transfer. This flaw could enable an attacker to access kernel address information, potentially leading to a loss of confidentiality. The issue affects several AMD graphics and datacenter accelerator products, as well as some client processors.

Impact

Exploitation of this vulnerability could result in unauthorized access to kernel address information, creating a risk of confidential data exposure.

Remediation

Users are advised to update to the latest version of the AMD Radeon Software or AMD Software: PRO Edition. Specific update instructions can be found in the AMD Radeon Graphics Cards or AMD Software: PRO Edition tables.

Added: Sep 6, 2025, 7:39 PM

Updated: Sep 6, 2025, 7:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD Crash Defender Improper Information Removal Vulnerability Allowing Kernel Address Disclosure

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating