Memory Corruption in AMD Versal Adaptive SoC Devices
CVE-2025-0036

3.2LOW

Key Information:

Vendor: Amd
Status: Platform Loader And Manager (plm)
Vendor: CVE Published:; 10 June 2025

What is CVE-2025-0036?

In AMD Versal Adaptive SoC devices, improper configuration of the Secure Sockets Layer (SSL) during runtime cryptographic operations can lead to significant issues. This vulnerability may result in data being incorrectly written to and read from invalid memory locations, subsequently returning erroneous cryptographic data. This flaw can potentially expose sensitive information and compromise data integrity within affected systems, making it critical for users and organizations relying on these devices to implement necessary security measures.

Affected Version(s)

Platform Loader and Manager (PLM) Refer to AMD-SB-8011

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V3.1

Score:

3.2

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2025

Amd

What is CVE-2025-0036?

Affected Version(s)

References

CVSS V3.1

Timeline