Description
Improper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine (VM) to access these shared resources from another Guest VM, potentially resulting in the loss of confidentiality, integrity, or availability.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
Low
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
Low
Integrity (Vulnerable System)
Low
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
Low
Integrity (Subsequent System)
Low
Availability (Subsequent System)
Low
Affected products
- AMD / AMD Instinct™ MI210GIM 8.2.0.K – GIM 8.2.0.K
- AMD / AMD Instinct™ MI300XGIM 8.2.0.K – GIM 8.2.0.K
- AMD / AMD Instinct™ MI325XGIM 8.2.0.K – GIM 8.2.0.K
- AMD / AMD Radeon™ PRO V710Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative