Vulnerability in Amd Instinct™ Mi210

CVE-2025-66660

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_CHECK_TA_COMPAT to cause incorrect shared memory mapping, potentially resulting in unexpected behavior.

EPSS: 0.000 (9.3th percentile) — read the EPSS interpretation.

Affected products

Amd Instinct™ Mi210 — versions ROCm 7.0.1
Amd Instinct™ Mi250 — versions ROCm 7.0.1
Amd Instinct™ Mi300a — versions BKC 26
Amd Instinct™ Mi300x — versions ROCm 6.3
Amd Instinct™ Mi308x — versions ROCm 6.4.2
Amd Instinct™ Mi325x — versions ROCm 6.3
Amd Radeon™ Pro V620 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro V710 — versions Contact your AMD Customer Engineering representative
Amd Radeon™ Pro W6000 Series Graphics Products — versions AMD Software: PRO Edition 25.Q4 (25.10.37.01)
Amd Radeon™ Pro W7000 Series Graphics Products — versions AMD Software: PRO Edition 25.Q3.1 (25.10.32)

Weakness classification (CWE)

CWE-1284 — Improper Validation of Specified Quantity in Input

References

psirt@amd.com