Use After Free in Amd Athlon™ 3000 Series Desktop Processors With Radeon™ Graphics (Formerly Codenamed "Picasso")
CVE-2025-48521
Improper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity or crash.
Vulnerability class: Use-After-Free
EPSS: 0.000 (3.8th percentile) — read the EPSS interpretation.
Affected products
- Amd Athlon™ 3000 Series Desktop Processors With Radeon™ Graphics (Formerly Codenamed "Picasso") — versions AMD Ryzen™ Chipset Driver 7.02.13.148
- Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics (Formerly Codenamed "Dali") — versions AMD Ryzen™ Chipset Driver 7.02.13.148
- Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics (Formerly Codenamed "Picasso") — versions AMD Ryzen™ Chipset Driver 7.02.13.148
- Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics (Formerly Codenamed "Pollock") — versions AMD Ryzen™ Chipset Driver 7.02.13.148
- Amd Epyc™ 4004 Series Processors — versions AMD Chipset Driver 7.02.13.148
- Amd Epyc™ 4005 Series Processors — versions AMD Chipset Driver 7.02.13.148
- Amd Epyc™ Embedded 4004 Series Processors — versions AM5 Windows Chipset Drivers with Digital Signature Fix (64284)
- Amd Epyc™ Embedded 4005 Series Processors — versions AM5 Windows Chipset Drivers with Digital Signature Fix (64284)
- Amd Epyc™ Embedded 8004 Series Processors — versions Q4 - 2025 AMD Embedded Windows® Chipset drivers (71816)
- Amd Epyc™ Embedded 9000 Series Processors — versions Q4 - 2025 AMD Embedded Windows® Chipset drivers (71816)