Use-After-Free Vulnerability in Xilinx Runtime by AMD
CVE-2025-0003

7.3HIGH

Key Information:

Vendor: Amd
Status: Xilinx Run Time (xrt)
Vendor: CVE Published:; 24 November 2025

What is CVE-2025-0003?

A vulnerability exists in Xilinx Runtime due to inadequate locking mechanisms, which may allow a local attacker to exploit a Use-After-Free condition. This flaw could potentially lead to unauthorized access, resulting in a loss of confidentiality or availability of the system resources.

Affected Version(s)

Xilinx Run Time (XRT) 2025.1

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 24, 2025
Vulnerability Reserved
Oct 10, 2024

Credit

Reported through AMD Bug Bounty Program

JSON