PT-2026-41257 · Amd · Amd Secure Processor Tee Soc Driver

CVE-2025-66664

·

Published

2026-05-15

·

Updated

2026-05-15

CVSS v4.0

4.6

Medium

VectorAV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Name of the Vulnerable Software and Affected Versions AMD Secure Processor (ASP) TEE SOC Driver (affected versions not specified)
Description Insufficient parameter sanitization in the AMD Secure Processor (ASP) TEE SOC Driver allows an attacker to issue a malformed 'DRV SOC CMD ID LOAD GFX IP FW' SR-IOV command. This can trigger an out-of-bounds read, which is a condition where the system reads data beyond the end of the intended buffer, potentially leading to the exposure of SOC Driver memory contents or causing a system exception.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-66664

Affected Products

Amd Secure Processor Tee Soc Driver