Description
An out-of-bounds read in the ASP could allow a privileged attacker with access to a malicious bootloader to potentially read sensitive memory resulting in loss of confidentiality.
References (2)
Core 2
Core References
Scores
CVSS v3
2.5
EPSS
0.0001
EPSS Percentile
1.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-125
Status
published
Products (23)
AMD/AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics
Picasso-FP5_1.0.1.1
AMD/AMD Ryzen™ 3000 Series Desktop Processors
ComboAM4PI_1.0.0.E
AMD/AMD Ryzen™ 3000 Series Desktop Processors
ComboAM4v2PI_1.2.0.CA
AMD/AMD Ryzen™ 4000 Series Desktop Processors
ComboAM4v2PI_1.2.0.CA
AMD/AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics
Renoir-FP6_1.0.0.Ea
AMD/AMD Ryzen™ 5000 Series Desktop Processors
ComboAM4v2PI_1.2.0.CA
AMD/AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics
ComboAM4v2PI_1.2.0.CA
AMD/AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics
Cezanne-FP6_1.0.1.1a
AMD/AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics
Rembrandt-FP7_1.0.0.A
AMD/AMD Ryzen™ 7000 Series Desktop Processors
ComboAM5 1.1.0.2
... and 13 more
Published
Sep 06, 2025
Tracked Since
Feb 18, 2026