Description
A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
High
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
Low
Integrity (Vulnerable System)
Low
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
Affected products
- AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsComboAM4v2 PI 1.2.0.8 – ComboAM4v2 PI 1.2.0.8
- AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
- AMD / AMD Instinct™ MI210ROCm 6.4.2 – ROCm 6.4.2
- AMD / AMD Instinct™ MI250ROCm 6.4.2 – ROCm 6.4.2
- AMD / AMD Radeon™ Instinct™ MI25Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO V520Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO V620Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO VIIAMD Software: PRO Edition 25.Q2 (23.19.23.01 pre-RDNA) – AMD Software: PRO Edition 25.Q2 (23.19.23.01 pre-RDNA)
- AMD / AMD Radeon™ PRO W5000 Series Graphics ProductsAMD Software: PRO Edition 25.Q2 (25.10.10) – AMD Software: PRO Edition 25.Q2 (25.10.10)
- AMD / AMD Radeon™ PRO W6000 Series Graphics ProductAMD Software: PRO Edition 25.Q2 (25.10.10) – AMD Software: PRO Edition 25.Q2 (25.10.10)
- AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 25.Q2 (25.10.10) – AMD Software: PRO Edition 25.Q2 (25.10.10)
- AMD / AMD Radeon™ PRO WX 8000/9000 Series Graphics CardsAMD Software: PRO Edition 25.Q2 (23.19.23.01 pre-RDNA) – AMD Software: PRO Edition 25.Q2 (23.19.23.01 pre-RDNA)
- AMD / AMD Radeon™ RX 5000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.5.1 (25.10.01.09) – AMD Software: Adrenalin Edition 25.5.1 (25.10.01.09)
- AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.5.1 (25.10.01.09) – AMD Software: Adrenalin Edition 25.5.1 (25.10.01.09)
- AMD / AMD Radeon™ RX Vega Series Graphics CardsAMD Software: Adrenalin Edition 25.5.1 (23.19.23.01 pre-RDNA) – AMD Software: Adrenalin Edition 25.5.1 (23.19.23.01 pre-RDNA)
- AMD / AMD Radeon™ VIIAMD Software: Adrenalin Edition 25.5.1 (23.19.23.01 pre-RDNA) – AMD Software: Adrenalin Edition 25.5.1 (23.19.23.01 pre-RDNA)
- AMD / AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
- AMD / AMD Ryzen™ Embedded R1000 Series ProcessorsEmbeddedPI-FP5_1.2.0.A – EmbeddedPI-FP5_1.2.0.A
- AMD / AMD Ryzen™ Embedded R2000 Series ProcessorsEmbeddedR2KPI-FP5_1.0.0.2 – EmbeddedR2KPI-FP5_1.0.0.2
- AMD / AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")120A – 120A
- AMD / AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")EmbeddedPI-FP5_1.2.0.A – EmbeddedPI-FP5_1.2.0.A