Primary

Context

AMD uProf Improper Input Validation Vulnerability Allowing Arbitrary Physical Address Writes

Vulnerability

Patched

A vulnerability exists in AMD uProf due to improper input validation, which can enable a local attacker to write to an arbitrary physical address. This flaw has the potential to cause a system crash or lead to a denial-of-service condition.

Impact

Exploitation of this vulnerability can result in a system crash or a denial-of-service condition.

Remediation

Users can upgrade to AMD uProf version 5.0 or higher to address this vulnerability.

Added: Nov 24, 2025, 9:18 PM

Updated: Nov 24, 2025, 9:18 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD uProf Improper Input Validation Vulnerability Allowing Arbitrary Physical Address Writes

Vulnerability

Impact

Remediation

Affected Products

AMD μProf

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating