What is CVE-2021-26410?

CVE-2021-26410 is a vulnerability in Amd Radeon™ Pro V520, classified under Untrusted Pointer Dereference. Published 2026-02-10.

Is CVE-2021-26410 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Amd Radeon™ Pro V520

CVE-2021-26410

Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential infor…

EPSS: 0.000 (0.4th percentile) — read the EPSS interpretation.

Affected products

Amd Radeon™ Pro V520 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro V620 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro W5000 Series Graphics Products — versions AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10), Radeon Software For Linux (25.10.1)
Amd Radeon™ Pro W6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10), Radeon Software For Linux (25.10.1)
Amd Radeon™ Rx 5000 Series Graphics Products — versions AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10), Radeon Software For Linux (25.10.1)
Amd Radeon™ Rx 6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 25.6.1 (25.10.13.01), AMD Software: PRO Edition 25.Q2 (25.10.10), Radeon Software For Linux (25.10.1)
Amd Ryzen™ 4000 Series Desktop Processors — versions ComboAM4v2 PI 1.2.0.5
Amd Ryzen™ 4000 Series Mobile Processors With Radeon™ Graphics — versions RenoirPI-FP6 1.0.0.8
Amd Ryzen™ 5000 Series Desktop Processors With Radeon™ Graphics — versions ComboAM4v2 PI 1.2.0.5+ iGPU Driver Update
Amd Ryzen™ 5000 Series Mobile Processors With Radeon™ Graphics — versions CezannePI-FP6 1.0.0.8

Weakness classification (CWE)

CWE-822 — Untrusted Pointer Dereference

Public proof-of-concept exploits

Osiris9211/Task-3-Vulnerability-Scan-Report

References

Frequently asked questions

What is CVE-2021-26410?: CVE-2021-26410 is a vulnerability in Amd Radeon™ Pro V520, classified under Untrusted Pointer Dereference. Published 2026-02-10.
Is CVE-2021-26410 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.