Privilege Escalation Vulnerability in AMD Ryzen(TM) AI Installation Folder
CVE-2025-0014

7.3HIGH

Key Information:

Vendor: Amd
Status: Amd Ryzen™ Ai Software
Vendor: CVE Published:; 2 April 2025

Summary

A security flaw in the installation folder of AMD Ryzen(TM) AI arises from incorrect default permissions. This misconfiguration allows attackers to gain elevated privileges, ultimately enabling them to execute arbitrary code on compromised systems. Proper permissions should be enforced to safeguard against unauthorized access and ensure the integrity of the installation process.

Affected Version(s)

AMD Ryzen™ AI Software 1.3

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 2, 2025
Vulnerability Reserved
Oct 10, 2024