Amd instinct™ mi250
This hub aggregates every CVE we track for Amd instinct™ mi250, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
6
High
0
In CISA KEV
Severity distribution
HIGH6LOW2MEDIUM1
Monthly trend
0
1
0
0
0
0
0
0
0
0
0
0
0
0
5
0
0
0
0
3
0
0
0
0
2024-072026-06
Latest CVEs
The 9 most recently published vulnerabilities affecting Amd instinct™ mi250.
- CVE-2023-31313An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attacker to send malformed messages to the system management unit (SMU) potentially resultin...7.2
- CVE-2023-20548A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to corrupt memory resulting in loss of integrity, confidentiality, or availability.7.8
- CVE-2023-31324A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure Processor (ASP) could allow an attacker to modify External Global Memory Interconnect Trusted Agent (XGMI TA) commands as they ...7.8
- CVE-2025-0010An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability.6.1
- CVE-2024-36342Improper input validation in the GPU driver could allow an attacker to exploit a heap overflow potentially resulting in arbitrary code execution.8.8
- CVE-2023-31326Use of an uninitialized variable in the ASP could allow an attacker to access leftover data from a trusted execution environment (TEE) driver, potentially leading to loss of confidentiality.2.8
- CVE-2023-20516Improper handling of insufficiency privileges in the ASP could allow a privileged attacker to modify Translation Map Registers (TMRs) potentially resulting in loss of confidentiality or integrity.3.3
- CVE-2021-26383Insufficient bounds checking in AMD TEE (Trusted Execution Environment) could allow an attacker with a compromised userspace to invoke a command with malformed arguments leading to out of bounds me...7.9
- CVE-2022-23817Insufficient checking of memory buffer in AMD Secure Processor (ASP) Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address s...7.0
Product normalization is registry-driven with AI assist and human review. How it works