CVE-2025-29935 HIGH

CVE-2025-29935

Weakness CWE-787
Published May 15, 2026
Last update May 16, 2026

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:H/SA:H

What the vulnerability does

01Description

An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiality integrity, or availability.

Key dates

02Disclosure timeline

May 15, 2026 CVE published
May 16, 2026 Record updated