Description
An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality.
Published: 2026-05-15
Score: 5.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an out‑of‑bounds read in the AMD Platform Management Framework (PMF). It allows an attacker to read data from arbitrary memory addresses, which can expose sensitive information or cause a denial of service by corrupting system state. The weakness is classified as CWE‑125, an untrusted control of buffer or array bounds.

Affected Systems

Affected are AMD Ryzen 6000, 7035, 7040, 8040, and Embedded 8000 series processors running the Platform Management Framework firmware as supplied by AMD. Specific model names include Rembrandt, Rembrandt R, Phoenix, Hawk Point, and the Embedded 8000 series.

Risk and Exploitability

The CVSS score of 5.8 indicates moderate severity, and with no EPSS data, the likelihood of exploitation remains uncertain. The vulnerability is not yet listed in CISA’s KEV catalog. Attackers would need privileged access to the firmware or a way to interact with the PMF subsystem, implying the likely attack vector involves local privileged or firmware‑level compromise.

Generated by OpenCVE AI on May 15, 2026 at 04:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest AMD firmware update for the processor that includes the Platform Management Framework fix.
  • If a firmware update has not yet been released, disable the PMF interface or restrict its access to trusted components only.
  • Enable firmware integrity verification and monitor for anomalous PMF activity to detect potential exploitation attempts.

Generated by OpenCVE AI on May 15, 2026 at 04:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 15 May 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 15 May 2026 04:45:00 +0000

Type Values Removed Values Added
Title Out‑of‑Bounds Read in AMD Platform Management Framework Allowing Arbitrary Memory Access

Fri, 15 May 2026 03:00:00 +0000

Type Values Removed Values Added
Description An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality.
Weaknesses CWE-125
References
Metrics cvssV4_0

{'score': 5.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published:

Updated: 2026-05-15T13:29:23.526Z

Reserved: 2025-03-12T15:14:59.391Z

Link: CVE-2025-29937

cve-icon Vulnrichment

Updated: 2026-05-15T13:29:18.969Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-15T03:16:21.697

Modified: 2026-05-15T14:10:17.083

Link: CVE-2025-29937

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T04:30:36Z

Weaknesses