Description
Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior.
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
High
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
Low
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
Affected products
- AMD / AMD Instinct™ MI300ABKC 26 – BKC 26
- AMD / AMD Instinct™ MI300XROCm 6.3.1 – ROCm 6.3.1
- AMD / AMD Instinct™ MI308XROCm 6.4.2 – ROCm 6.4.2
- AMD / AMD Instinct™ MI325XROCm 6.3.1 – ROCm 6.3.1