CVE-2025-66664
Published: May 15, 2026
Modified: May 15, 2026
Description
Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver memory contents exposure or an exception
| Vendor | Product | Versions |
|---|---|---|
AMD | AMD Radeon™ RX 6000 Series Graphics Products | unaffected AMD Software: Adrenalin Edition 25.12.1 (25.10.37.01) |
AMD | AMD Radeon™ RX 7000 Series Graphics Products | unaffected AMD Software: Adrenalin Edition 25.11.1 (25.20.29.01) |
AMD | AMD Radeon™ PRO W6000 Series Graphics Products | unaffected AMD Software: PRO Edition 25.Q4 (25.10.37.01) |
AMD | AMD Radeon™ PRO W7000 Series Graphics Products | unaffected AMD Software: PRO Edition 25.Q3.1 (25.10.32) |
AMD | AMD Instinct™ MI250 | unaffected ROCm 7.0 |
AMD | AMD Instinct™ MI210 | unaffected ROCm 7.0 |
AMD | AMD Instinct™ MI300X | unaffected ROCm 6.3.1 |
AMD | AMD Instinct™ MI325X | unaffected ROCm 6.3.1 |
AMD | AMD Instinct™ MI308X | unaffected ROCm 6.4.2 |
AMD | AMD Instinct™ MI300A | unaffected BKC 26 (ROCm 7.0.1) |
AMD | AMD Radeon™ PRO V520 | unaffected Contact your AMD Customer Engineering representative |
AMD | AMD Radeon™ PRO V620 | unaffected Contact your AMD Customer Engineering representative |
AMD | AMD Radeon™ PRO V710 | unaffected Contact your AMD Customer Engineering representative |
Weaknesses (CWE)
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now