CVE-2026-0428

Published: May 15, 2026

Modified: May 15, 2026

PUBLISHED

Description

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior.

Vendor	Product	Versions
AMD	AMD Instinct™ MI300A	unaffected `BKC 26`
AMD	AMD Instinct™ MI300X	unaffected `ROCm 6.3.1`
AMD	AMD Instinct™ MI308X	unaffected `ROCm 6.4.2`
AMD	AMD Instinct™ MI325X	unaffected `ROCm 6.3.1`

Weaknesses (CWE)

CWE-1284

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-0428

Description

Affected Products

Weaknesses (CWE)

References