Description
Type confusion in the ASP could allow an attacker to pass a malformed argument to the Reliability, Availability, and Serviceability trusted application (RAS TA) potentially leading to a read or write to shared memory resulting in loss of confidentiality, integrity, or availability.
Scores
CVSS v3
8.7
EPSS
0.0002
EPSS Percentile
5.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-843
Status
published
Products (2)
AMD/-AMD Radeon™ PRO W7000 Series Graphics Products
AMD Software: PRO Edition 24.Q2 (24.10.20)
AMD/AMD Radeon™ RX 7000 Series Graphics Products
AMD Software: Adrenalin Edition 24.6.1 (24.10.21.01
Published
Sep 06, 2025
Tracked Since
Feb 18, 2026