CVE-2025-48519
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-48519
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or write Out-of-Bounds, potentially resulting in privilege escalation
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存写
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| AMD | AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R") | 7.06.02.123 | - | |
| AMD | AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix") | 7.06.02.123 | - | |
| AMD | AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point") | 7.06.02.123 | - | |
| AMD | AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt") | 7.06.02.123 | - | |
| AMD | AMD Ryzen™ Embedded 8000 Series Processors | amd_chipset_software_7.06.02.123.exe | - |
II. Public POCs for CVE-2025-48519
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-48519
请登录查看更多情报信息。
Same Patch Batch · AMD · 2026-05-15 · 39 CVEs total
| CVE-2025-48513 | AMD PMF未初始化资源漏洞 | |
| CVE-2021-26380 | Trusted OS驱动内存越界致完整性丢失 | |
| CVE-2025-0040 | NXP JTAG-AXI访问控制漏洞 | |
| CVE-2024-21962 | AMD RAID驱动输入验证缺陷致提权与代码执行 | |
| CVE-2025-29935 | AMD PMF越界写入漏洞(影响代码执行) | |
| CVE-2025-29944 | AMD Sensor Fusion Hub 驱动缓冲区溢出致系统崩溃 | |
| CVE-2025-29938 | AMD PMF 版本未指定:未检查返回值致任意代码执行 | |
| CVE-2025-29937 | AMD PMF越界读取漏洞 | |
| CVE-2025-0028 | AMD PMF框架越界读写漏洞 | |
| CVE-2025-29936 | AMD平台管理框架输入验证缺陷导致权限提升 | |
| CVE-2022-23826 | Graphics TOCTOU漏洞可致完整性破坏 | |
| CVE-2025-52540 | AMD PMF驱动越界写入致提权 | |
| CVE-2025-48520 | AMD平台管理框架驱动越界读取漏洞 | |
| CVE-2025-0045 | AMD Secure Processor驱动输入验证漏洞致拒绝服务 | |
| CVE-2026-0432 | AMD芯片组驱动权限错误致提权 | |
| CVE-2025-48521 | ASP PCI驱动Use-After-Free漏洞致平台完整性丧失 | |
| CVE-2025-48512 | AMD GPIO控制器权限配置错误致提权 | |
| CVE-2024-36345 | AMD OverDrive SMM模块越界读取漏洞 | |
| CVE-2026-0438 | SMM handler执行非SMM内存代码导致远程代码执行漏洞 | |
| CVE-2023-31309 | Power Management Firmware多版本信息泄露与可用性受损漏洞 |
Showing top 20 of 39 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2025-48519
No comments yet