CVE-2025-29936

HIGH

Amd Ryzen™ 7035 Series Processors With Radeon™ Graphics (formerly Codenamed "Rembrandt R") - Improper Input Validation

Title source: rule

Description

Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing privilege escalation resulting in loss of confidentiality.

References (1)

Core 1

Core References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4015.html

Scores

CVSS v4 8.4

EPSS 0.0003

EPSS Percentile 9.5%

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-20

Status published

Products (7)

AMD/AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt") 7.06.02.123

AMD/AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R") 7.06.02.123

AMD/AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix") 7.06.02.123

AMD/AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point") 7.06.02.123

AMD/AMD Ryzen™ AI 300 Series Processors (formerly codenamed "Strix Point") 7.06.02.123

AMD/AMD Ryzen™ Al Max+ 7.06.02.123

AMD/AMD Ryzen™ Embedded 8000 Series Processors amd_chipset_software_7.06.02.123.exe

Published May 15, 2026

Tracked Since May 15, 2026