AMD PMF Driver Improper Input Validation enabling OOB Priv Esc
CVE-2025-48519 Published on May 15, 2026

An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or write Out-of-Bounds, potentially resulting in privilege escalation

NVD

Weakness Type

What is a Memory Corruption Vulnerability?

The software writes data past the end, or before the beginning, of the intended buffer. Typically, this can result in corruption of data, a crash, or code execution. The software may modify an index or perform pointer arithmetic that references a memory location that is outside of the boundaries of the buffer. A subsequent write operation then produces undefined or unexpected results.

CVE-2025-48519 has been classified to as a Memory Corruption vulnerability or weakness.

Affected Versions

AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ Embedded 8000 Series Processors:

Version amd_chipset_software_7.06.02.123.exe is unaffected.

AMD PMF Driver Improper Input Validation enabling OOB Priv EscCVE-2025-48519 Published on May 15, 2026

Weakness Type

What is a Memory Corruption Vulnerability?

Affected Versions

AMD PMF Driver Improper Input Validation enabling OOB Priv Esc
CVE-2025-48519 Published on May 15, 2026