CVE-2025-48508
Improper Reset Logic in AMD GPU GFX Causes DoS
Publication date: 2026-02-11
Last updated on: 2026-02-11
Assigner: Advanced Micro Devices Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| amd | gpu_gfx_hardware_ip_block | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-1245 | Faulty finite state machines (FSMs) in the hardware logic allow an attacker to put the system in an undefined state, to cause a denial of service (DoS) or gain privileges on the victim's system. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves improper hardware reset flow logic in the GPU GFX Hardware IP block. It allows a privileged attacker within a guest virtual machine to manipulate the reset operation. This manipulation can potentially cause the host system or the GPU to crash or reset.
How can this vulnerability impact me? :
The impact of this vulnerability is a denial of service condition. An attacker with high privileges in a guest virtual machine could cause the host or GPU to crash or reset, disrupting normal operations and potentially causing system downtime.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know