What is CVE-2025-0011?

CVE-2025-0011 is a low-severity vulnerability in Amd Radeon™ Pro V520 Graphics Products, classified under Improper Removal of Sensitive Information Before Storage or Transfer. CVSS score: 3.3/10. Published 2025-09-06.

How severe is CVE-2025-0011?

Low severity. CVSS v3 base score is 3.3 out of 10.

Is CVE-2025-0011 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Amd Radeon™ Pro V520 Graphics Products

CVE-2025-0011

Improper removal of sensitive information before storage or transfer in AMD Crash Defender could allow an attacker to obtain kernel address information potentially resulting in loss of confidentiality.

EPSS: 0.001 (30.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.3 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N.

Affected products

Amd Radeon™ Pro V520 Graphics Products — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro V620 Graphics Products — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro V710 Graphics Products — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro W5000 Series Graphics Products — versions AMD Software: PRO Edition 24.Q4 (24.20.30)
Amd Radeon™ Pro W6000 Series Graphics Products — versions AMD Software: PRO Edition 24.Q4 (24.20.30)
Amd Radeon™ Pro W7000 Series Graphics Products — versions AMD Software: PRO Edition 24.Q4 (24.20.30)
Amd Radeon™ Rx 5000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)
Amd Radeon™ Rx 6000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)
Amd Radeon™ Rx 7000 Series Graphics Products — versions AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01)
Amd Ryzen™ 6000 Series Processor With Radeon™ Graphics — versions AMD Software: Adrenalin Edition 24.10.1 (24.20.19.01), AMD Software: PRO Edition 24.Q4 (24.20.30)

Weakness classification (CWE)

CWE-212 — Improper Removal of Sensitive Information Before Storage or Transfer

Public proof-of-concept exploits

References

www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html

Frequently asked questions

What is CVE-2025-0011?: CVE-2025-0011 is a low-severity vulnerability in Amd Radeon™ Pro V520 Graphics Products, classified under Improper Removal of Sensitive Information Before Storage or Transfer. CVSS score: 3.3/10. Published 2025-09-06.
How severe is CVE-2025-0011?: Low severity. CVSS v3 base score is 3.3 out of 10.
Is CVE-2025-0011 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.