Improper Information Handling in AMD Crash Defender
CVE-2025-0011

3.3LOW

Key Information:

Vendor: Amd
Status: Amd Ryzen™ 8000 Series Desktop Processors; Amd Ryzen™ 7040 Series Mobile Processors With Radeon™ Graphics; Amd Ryzen™ 6000 Series Processor With Radeon™ Graphics; Amd Ryzen™ 7035 Series Processor With Radeon™ Graphics
Vendor: CVE Published:; 6 September 2025

What is CVE-2025-0011?

The AMD Crash Defender contains a vulnerability that improperly manages sensitive information prior to its storage or transfer. This flaw can be exploited by attackers to retrieve kernel address information, potentially jeopardizing the confidentiality of sensitive data. Users of AMD Crash Defender should be aware of this issue to mitigate risks associated with information leakage.

Affected Version(s)

AMD Radeon™ PRO V520 Graphics Products Contact your AMD Customer Engineering representative

AMD Radeon™ PRO V620 Graphics Products Contact your AMD Customer Engineering representative

AMD Radeon™ PRO V710 Graphics Products Contact your AMD Customer Engineering representative

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 6, 2025
Vulnerability Reserved
Oct 10, 2024

Credit

Reported through AMD Bug Bounty Program