Description
Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_CHECK_TA_COMPAT to cause incorrect shared memory mapping, potentially resulting in unexpected behavior.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
High
Attack Requirements
Present
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
Affected products
- AMD / AMD Instinct™ MI210ROCm 7.0.1 – ROCm 7.0.1
- AMD / AMD Instinct™ MI250ROCm 7.0.1 – ROCm 7.0.1
- AMD / AMD Instinct™ MI300ABKC 26 – BKC 26
- AMD / AMD Instinct™ MI300XROCm 6.3 – ROCm 6.3
- AMD / AMD Instinct™ MI308XROCm 6.4.2 – ROCm 6.4.2
- AMD / AMD Instinct™ MI325XROCm 6.3 – ROCm 6.3
- AMD / AMD Radeon™ PRO V620Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO V710Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
- AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 25.Q4 (25.10.37.01) – AMD Software: PRO Edition 25.Q4 (25.10.37.01)
- AMD / AMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: PRO Edition 25.Q3.1 (25.10.32) – AMD Software: PRO Edition 25.Q3.1 (25.10.32)
- AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.12.1 (25.10.37.01) – AMD Software: Adrenalin Edition 25.12.1 (25.10.37.01)
- AMD / AMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.11.1 (25.20.29.01) – AMD Software: Adrenalin Edition 25.11.1 (25.20.29.01)