PT-2026-41257 · Amd · Amd Secure Processor Tee Soc Driver
CVE-2025-66664
·
Published
2026-05-15
·
Updated
2026-05-15
CVSS v4.0
4.6
Medium
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
AMD Secure Processor (ASP) TEE SOC Driver (affected versions not specified)
Description
Insufficient parameter sanitization in the AMD Secure Processor (ASP) TEE SOC Driver allows an attacker to issue a malformed 'DRV SOC CMD ID LOAD GFX IP FW' SR-IOV command. This can trigger an out-of-bounds read, which is a condition where the system reads data beyond the end of the intended buffer, potentially leading to the exposure of SOC Driver memory contents or causing a system exception.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Amd Secure Processor Tee Soc Driver