CVE-2025-48510
HIGHDescription
Improper return value within AMD uProf can allow a local attacker to bypass KSLR, potentially resulting in loss of confidentiality or availability.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| amd | uprof |
| amd | uprof |
| amd | uprof |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-48510? +
How severe is CVE-2025-48510? +
What products are affected by CVE-2025-48510? +
How do I check if I'm vulnerable to CVE-2025-48510? +
Related Vulnerabilities
Improper handling of non-200 http responses in the PingFederate Google Adapter leads to thread exhaustion under normal usage conditions.
In Yubico pam-u2f before 1.3.1, local privilege escalation can sometimes occur. This product implements a Pluggable Authentication Module (PAM) that …
Systemic Internal Server Errors - HTTP 500 ResponseThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .
Lack of Graceful Error Handling - HTTP 5xx ErrorThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .
A user who can create objects in a database with plv8 3.2.1 installed is able to cause deferred triggers to …
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to …