目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%
请我们喝杯咖啡

CVE-2026-0438— AMD Chipset 安全漏洞

AI 预测 8.6 利用难度: 困难 EPSS 0.14% · P4

影响版本矩阵 30

厂商产品版本范围状态
AMDAMD EPYC™ 4004 Series ProcessorsComboAM5PI 1.0.0.d / ComboAM5PI 1.1.0.3f / ComboAM5PI_1.2.0.3iunaffected
AMDAMD EPYC™ 4005 Series ProcessorsComboAM5PI_1.2.0.3iunaffected
AMDAMD Ryzen™ 7000 Series Desktop ProcessorsComboAM5PI 1.0.0.dunaffected
ComboAM5PI 1.1.0.3funaffected
ComboAM5PI_1.2.0.3iunaffected
AMDAMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed "Raphael")ComboAM5PI_1.3.0.0unaffected
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ GraphicsPhoenixPI-FP8-FP7_1.2.0.0funaffected
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ GraphicsDragonRangeFL1PI 1.0.0.3kunaffected
AMDAMD Ryzen™ 8000 Series Desktop ProcessorsComboAM5PI 1.1.0.3funaffected
ComboAM5PI_1.2.0.3iunaffected
AMDAMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed "Phoenix")ComboAM5PI_1.3.0.0unaffected
AMDAMD Ryzen™ 8040 Series Mobile Processors with Radeon™ GraphicsPhoenixPI-FP8-FP7_1.2.0.0funaffected
AMDAMD Ryzen™ 9000 Series Desktop ProcessorsComboAM5PI_1.2.0.3iunaffected
AMDAMD Ryzen™ 9000 Series Desktop Processors (formerly codenamed "Granite Ridge")ComboAM5PI_1.3.0.0unaffected
AMDAMD Ryzen™ 9000HX Series ProcessorsFireRangeFL1PI 1.0.0.0dunaffected
AMDAMD Ryzen™ AI 300 Series ProcessorsStrixKrackanPI-FP8_1.1.0.0eunaffected
AMDAMD Ryzen™ AI Max 300 Series ProcessorsStrixHaloPI-FP11_1.0.0.2aunaffected
AMDAMD Ryzen™ Embedded 7000 Series ProcessorsEmbeddedAM5PI 1.0.0.5unaffected
AMDAMD Ryzen™ Embedded 8000 Series ProcessorsEmbeddedPhoenixPI-FP7r2_1.0.0.4unaffected
AMDAMD Ryzen™ Embedded 9000 Series ProcessorsEmbeddedAM5PI 1.0.0.5unaffected
AMDAMD Ryzen™ Threadripper™ 7000 ProcessorsShimadaPeakPI-SP6 1.0.0.1cunaffected
AMDAMD Ryzen™ Threadripper™ 9000 ProcessorsShimadaPeakPI-SP6 1.0.0.1cunaffected
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series ProcessorsStormPeakPI-SP6 1.0.0.1munaffected
StormPeakPI-SP6_1.1.0.0kunaffected
ShimadaPeakPI-SP6 1.0.0.1cunaffected
AMDAMD Ryzen™ Threadripper™ PRO 9000 WX-Series ProcessorsShimadaPeakPI-SP6 1.0.0.1cunaffected
AMDAMD Ryzen™ Z1 Series ProcessorsPhoenixPI-FP8-FP7_1.2.0.0funaffected
PhoenixPI-FP8-FP7_1.2.0.0funaffected
AMDAMD Ryzen™ Z2 Series ProcessorsPhoenixPI-FP8-FP7_1.2.0.0funaffected
AMDAMD Ryzen™ Z2 Series Processors ExtremeStrixKrackanPI-FP8_1.1.0.2dunaffected
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2026-0438 基础信息

漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially compromising the system’s confidentiality, integrity, and availability.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
不使用连接池访问数据资源
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
AMD Chipset 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
AMD Chipset是美国超威半导体(AMD)公司的一系列芯片。 AMD Chipset存在安全漏洞,该漏洞源于可对非SMM不可信内存中的代码执行调用,可能导致高权限攻击者在用户交互和高复杂度条件下触发SMM中攻击者控制代码的执行,破坏系统机密性、完整性和可用性。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7_1.2.0.0f -
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics DragonRangeFL1PI 1.0.0.3k -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5PI 1.0.0.d -
AMDAMD Ryzen™ 9000HX Series Processors FireRangeFL1PI 1.0.0.0d -
AMDAMD Ryzen™ AI 300 Series Processors StrixKrackanPI-FP8_1.1.0.0e -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors StormPeakPI-SP6 1.0.0.1m -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5PI 1.1.0.3f -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5PI_1.2.0.3i -
AMDAMD Ryzen™ 8000 Series Desktop Processors ComboAM5PI 1.1.0.3f -
AMDAMD Ryzen™ 8000 Series Desktop Processors ComboAM5PI_1.2.0.3i -
AMDAMD Ryzen™ 9000 Series Desktop Processors ComboAM5PI_1.2.0.3i -
AMDAMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7_1.2.0.0f -
AMDAMD Ryzen™ AI Max 300 Series Processors StrixHaloPI-FP11_1.0.0.2a -
AMDAMD Ryzen™ Z1 Series Processors PhoenixPI-FP8-FP7_1.2.0.0f -
AMDAMD Ryzen™ Z1 Series Processors PhoenixPI-FP8-FP7_1.2.0.0f -
AMDAMD Ryzen™ Z2 Series Processors Extreme StrixKrackanPI-FP8_1.1.0.2d -
AMDAMD Ryzen™ Z2 Series Processors PhoenixPI-FP8-FP7_1.2.0.0f -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors ShimadaPeakPI-SP6 1.0.0.1c -
AMDAMD Ryzen™ Threadripper™ 7000 Processors ShimadaPeakPI-SP6 1.0.0.1c -
AMDAMD Ryzen™ Threadripper™ 9000 Processors ShimadaPeakPI-SP6 1.0.0.1c -
AMDAMD Ryzen™ Threadripper™ PRO 9000 WX-Series Processors ShimadaPeakPI-SP6 1.0.0.1c -
AMDAMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed "Raphael") ComboAM5PI_1.3.0.0 -
AMDAMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed "Phoenix") ComboAM5PI_1.3.0.0 -
AMDAMD Ryzen™ 9000 Series Desktop Processors (formerly codenamed "Granite Ridge") ComboAM5PI_1.3.0.0 -
AMDAMD Ryzen™ Embedded 9000 Series Processors EmbeddedAM5PI 1.0.0.5 -
AMDAMD Ryzen™ Embedded 8000 Series Processors EmbeddedPhoenixPI-FP7r2_1.0.0.4 -
AMDAMD Ryzen™ Embedded 7000 Series Processors EmbeddedAM5PI 1.0.0.5 -
AMDAMD EPYC™ 4004 Series Processors ComboAM5PI 1.0.0.d / ComboAM5PI 1.1.0.3f / ComboAM5PI_1.2.0.3i -
AMDAMD EPYC™ 4005 Series Processors ComboAM5PI_1.2.0.3i -

二、漏洞 CVE-2026-0438 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2026-0438 的情报信息

登录查看更多情报信息。

CVE-2026-0438 厂商安全公告 (1)

同批安全公告 · AMD · 2026-05-15 · 共 39 条

CVE-2025-48513AMD Chipset 安全漏洞
CVE-2021-26380AMD Graphics Driver 输入验证错误漏洞
CVE-2025-0040AMD Processors 访问控制错误漏洞
CVE-2024-21962AMD RAID Driver 安全漏洞
CVE-2025-29935AMD Chipset 缓冲区错误漏洞
CVE-2025-29944AMD Ryzen 安全漏洞
CVE-2025-29938AMD多款产品 安全漏洞
CVE-2025-29937AMD Processors 缓冲区错误漏洞
CVE-2025-0028AMD Chipset 安全漏洞
CVE-2025-29936AMD多款产品 输入验证错误漏洞
CVE-2022-23826AMD Processors 安全漏洞
CVE-2025-52540AMD Chipset 缓冲区错误漏洞
CVE-2025-48520AMD多款产品 缓冲区错误漏洞
CVE-2025-48519AMD Chipset 缓冲区错误漏洞
CVE-2025-0045AMD Secure Processor 安全漏洞
CVE-2026-0432AMD Chipset 安全漏洞
CVE-2025-48521AMD Processors 资源管理错误漏洞
CVE-2025-48512AMD Chipset 安全漏洞
CVE-2024-36345AMD OverDrive 安全漏洞
CVE-2023-31309AMD Radeon 输入验证错误漏洞

显示前 20 条,共 39 条。 查看全部 → →

IV. Related Vulnerabilities

Same product: AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics
Same vendor: AMD

V. Comments for CVE-2026-0438

暂无评论

发表评论