AMD Computer Hardware, Processor Manufacturer
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any AMD product.
RSS Feeds for AMD security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in AMD products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by AMD Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2026 there have been 95 vulnerabilities in AMD with an average score of 7.1 out of ten. Last year, in 2025 AMD had 41 security vulnerabilities published. That is, 54 more vulnerabilities have already been reported in 2026 as compared to last year. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.54.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 95 | 7.13 |
| 2025 | 41 | 6.59 |
| 2024 | 19 | 6.89 |
| 2023 | 10 | 6.63 |
| 2022 | 14 | 6.56 |
| 2021 | 36 | 6.35 |
| 2020 | 9 | 6.70 |
It may take a day or so for new AMD vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent AMD Security Vulnerabilities
| CVE | Date | Vulnerability | Products |
|---|---|---|---|
| CVE-2025-54518 | May 15, 2026 |
AMD Zen 2 CPU: Shared cache isolation flaw enables privilege escalationImproper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation. |
|
| CVE-2026-0481 | May 15, 2026 |
AMD Device Metrics Exporter Unrestricted IP Binding RCEUnrestricted IP address binding in the AMD Device Metrics Exporter (ROCm ecosystem) could allow a remote attacker to perform unauthorized changes to the GPU configuration, potentially resulting in loss of availability |
|
| CVE-2024-21950 | May 15, 2026 |
AMD RM Firmware OOB Read VulnerabilityAn out of bounds read in the remote management firmware could allow a privileged attacker read a limited section of memory outside of established bounds potentially resulting in loss of confidentiality or availability. |
|
| CVE-2025-52532 | May 15, 2026 |
CVE-2025-52532: Race Condition in AMD MxGPU-Virtualization DriverA race condition in the MxGPU-Virtualization drivers ioctl path caused by concurrent unsynchronized access to the global variable amdgv_cmd in an unlocked ioctl handler could be exploited by an attacker to trigger a heap-based buffer overflow, potentially resulting in denial-of-service within the vulnerable system context. |
|
| CVE-2024-36323 | May 15, 2026 |
AMD VCN-JPEG HW Register Isolation Vulnerability (CVE-2024-36323)Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine (VM) or a process to perform unauthorized access to the register space of the JPEG cores assigned a victim VM/process, potentially gaining arbitrary read/write access to the victim VM/process data. |
|
| CVE-2024-36333 | May 15, 2026 |
DLL Hijacking in AMD Cleanup Utility Enables Priv EscalationA DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. |
|
| CVE-2024-36334 | May 15, 2026 |
CVE-2024-36334: Signature Verification Flaw in AMD Radeon RGB ToolImproper verification of cryptographic signature in the Radeon RGB tool could allow a malicious file placed in the installation directory to be run with elevated privileges potentially leading to arbitrary code execution. |
|
| CVE-2026-0427 | May 15, 2026 |
AMD GPU Firmware Improper Cleanup of Shared Register ResourcesImproper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine (VM) to access these shared resources from another Guest VM, potentially resulting in the loss of confidentiality, integrity, or availability. |
|
| CVE-2024-36332 | May 15, 2026 |
AMD GPU Register Isolation flaw allows guest VM DOSImproper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine (VM) to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service (DOS) condition. |
|
| CVE-2025-0044 | May 15, 2026 |
AMD PowerMgr Firmware OOB Read Partial Conf/Avail LossAn out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability. |
|
| CVE-2023-31309 | May 15, 2026 |
Improper Validation in AMD PMFW Lets Privileged Attacker Export Malformed ArgsImproper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availability. |
|
| CVE-2023-31317 | May 15, 2026 |
AMD Secure Processor ASP buffer overflow enabling arbitrary code execImproper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitrary code execution. |
|
| CVE-2025-54511 | May 15, 2026 |
Improper Privilege Handling in AMD Secure Processor (ASP) Write ViolationImproper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a function without sufficient privileges and successfully write data, potentially resulting in loss of integrity of availability. |
|
| CVE-2025-54517 | May 15, 2026 |
Out-bounds write in AMDGPU ioctl GET_DIAG_DATA: local privilege escalationOut of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution. |
|
| CVE-2025-66660 | May 15, 2026 |
AMD TEE SOC Driver: Bad Param Sanitization in DRV_SOC_CMD_ID_SRIOVInsufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_CHECK_TA_COMPAT to cause incorrect shared memory mapping, potentially resulting in unexpected behavior. |
|
| CVE-2025-66664 | May 15, 2026 |
AMD ASP TEE SOC Driver OOB Read via Malformed SR-IOV CmdInsufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver memory contents exposure or an exception |
|
| CVE-2026-0428 | May 15, 2026 |
CVE-2026-0428: TEE SOC Driver Sanitation Flaw Allows Unauthorized Reg WriteInsufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior. |
|
| CVE-2025-48516 | May 15, 2026 |
AGESA DDR5 PMIC DoS Local Priv EscalationInsecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent denial of service condition or affect the integrity of the memory module. |
|
| CVE-2023-31316 | May 15, 2026 |
AMD Secure Processor Power Save State Flaw VCN Firmware Flow OverrideImproperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the trusted memory range (TMR) to change the execution flow of the Video Core Next (VCN) firmware potentially impacting confidentiality, integrity, or availability. |
|
| CVE-2022-23826 | May 15, 2026 |
AMD GPU Driver TOCTOU: Register Load Race ConditionA TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity. |
|
| CVE-2021-26380 | May 15, 2026 |
AMD Trusted OS (TOS) Driver Could Allow Memory Over-read via Malformed CallA compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity. |
|
| CVE-2025-0040 | May 15, 2026 |
Improper Access Control in JTAG-AXI Interaction Exposes XCD RegistersImproper access control between the Joint Test Action Group (JTAG) and Advanced Extensible Interface (AXI) could allow an attacker with physical access to read or overwrite the contents of cross-chip debug (XCD) registers potentially resulting in loss of data integrity or confidentiality. |
|
| CVE-2024-21962 | May 15, 2026 |
AMD RAID Driver Improper Input Validation Enables Privilege EscalationImproper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution. |
|
| CVE-2025-29935 | May 15, 2026 |
CVE-2025-29935: OOB Write in AMD PMF Enables Elevated Code ExecAn out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiality integrity, or availability. |
|
| CVE-2025-29944 | May 15, 2026 |
Local Out-Of-Bounds Write in AMD Sensor Fusion Hub DriverA buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash |
|
| CVE-2025-29938 | May 15, 2026 |
AMD PMF Unchecked Return Value Allows Arbitrary Memory WriteAn unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution. |
|
| CVE-2025-29937 | May 15, 2026 |
AMD PMF OOB Read Exposes Arbitrary MemoryAn out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality. |
|
| CVE-2025-0028 | May 15, 2026 |
AMD PMF unchecked return value allows arbitrary memory read/writeAn unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrity, or availability. |
|
| CVE-2025-29936 | May 15, 2026 |
AMD PMF Improper Input Validation Enables Privilege Escalation (CVE202529936)Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing privilege escalation resulting in loss of confidentiality. |
|
| CVE-2025-48513 | May 15, 2026 |
AMD PMF Uninitialized Resource Leak Enables Kernel Memory ReadUse of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability. |
|
| CVE-2025-52540 | May 15, 2026 |
AMD PMF Driver OOB Write/PrivEsc via Improper Input ValidationAn improper input validation vulnerability within the AMD Platform Management Framework (PMF) Driver can allow a local attacker to write Out-of-Bounds, potentially resulting in privilege escalation. |
|
| CVE-2025-48520 | May 15, 2026 |
Local Input Validation Bug in AMD PMF Driver Enables OOB Info DisclosureAn improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read Out-of-Bounds potentially resulting in information disclosure or a crash |
|
| CVE-2025-48519 | May 15, 2026 |
AMD PMF Driver Improper Input Validation enabling OOB Priv EscAn improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or write Out-of-Bounds, potentially resulting in privilege escalation |
|
| CVE-2025-0045 | May 15, 2026 |
AMD ASP PCI Driver Local Buffer Overflow via Improper Input ValidationImproper Input validation in the AMD Secure Processor (ASP) PCI driver may allow a local attacker to create a buffer overflow condition, potentially resulting in a crash or denial of service |
|
| CVE-2026-0432 | May 15, 2026 |
AMD Chipset Driver Dir Perm PrivEsc Enables Code ExecIncorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. |
|
| CVE-2025-48521 | May 15, 2026 |
AMD Secure Processor PCI Driver UAF via Improper Input ValidationImproper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity or crash. |
|
| CVE-2025-48512 | May 15, 2026 |
AMD GPIO Driver: Permissions Flaw Enables Privilege EscalationIncorrect default permissions in the installation directory for the AMD general-purpose input/output controller (GPIO) could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. |
|
| CVE-2024-36345 | May 15, 2026 |
AMD OverDrive SMM OOB Read via Improper Input ValidationImproper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an out-of-bounds read, potentially resulting in loss of confidentiality. |
|
| CVE-2026-0438 | May 15, 2026 |
AMD SMM Handler Code Injection VulnerabilityA System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially compromising the systems confidentiality, integrity, and availability. |
|
| CVE-2025-62619 | May 14, 2026 |
CVE-2025-62619: Unauth KVM Key Endpoint Exposes Sensitive Keys (AMD)Missing authentication in the KVM key download endpoint could allow an unauthenticated attacker with knowledge of the exposed URL to retrieve sensitive keys, potentially leading to loss of confidentiality. |
|
| CVE-2025-62625 | May 14, 2026 |
KVM Key Download Component Privilege Escalation via Token Swap (AMD)Improper privilege management in the KVM key download component could allow an attacker to swap tokens and download sensitive keys, potentially resulting in unauthorized access to privileged resources and loss of confidentiality. |
|
| CVE-2025-62628 | May 14, 2026 |
AMD Optional Tools OpenSSL Init DLL Injection (CVE-2025-62628)Unsafe OpenSSL initialization within some AMD optional tools may allow a local user-privileged attacker to inject a malicious DLL, potentially resulting in arbitrary code execution. |
|
| CVE-2024-36315 | May 13, 2026 |
AMD CPUs LFENCE Speculation Bypass DisclosureImproper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality. |
|
| CVE-2025-61972 | May 13, 2026 |
Missing Lock Bit on AMD NBIO Registers Enables Local Privileged Code ExecutionMissing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code execution in AMD Secure Processor (ASP) and loss of the SEV-SNP guest's confidentiality and integrity. |
|
| CVE-2025-61971 | May 13, 2026 |
Hardware: AMD NBIO Lock Bit Bypass for MMIO RoutingMissing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity. |
|
| CVE-2025-62627 | May 13, 2026 |
Untrusted Ptr Deref in VMware ESXi Ionic Cloud Driver Enables Kernel ReadAn untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting in loss of confidentiality or availability. |
|
| CVE-2025-62624 | May 13, 2026 |
Heap Overflow in VMware ESXi Ionic Cloud Driver Enables Priv EscalationA heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. |
|
| CVE-2025-62623 | May 13, 2026 |
VMware ESXi ionic cloud driver heap overflowA heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. |
|
| CVE-2025-54505 | Apr 27, 2026 |
AMD CPU Transient Exec: FP Divisor Leak to Local Privileged AttackerA transient execution vulnerability within AMD CPUs may allow a local user-privileged attacker to leak data via the floating point divisor unit, potentially resulting in loss of confidentiality. |
|
| CVE-2025-54502 | Apr 16, 2026 |
AMD APCB SMM Driver PrivEsc via Boot Service ExploitIncorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution. |