CVE-2025-29944 PUBLISHED

Assigner: AMD
Reserved: 12.03.2025 Published: 15.05.2026 Updated: 15.05.2026

A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CVSS Score: 6.8

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	None	Confidentiality	None
Attack Complexity	Low	Integrity	None	Integrity	None
Attack Requirements	None	Availability	High	Availability	None
Privileges Required	Low
User Interaction	None

CVSS 4.0

Product Status

Vendor	AMD
Product	AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Renoir")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Picasso")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics (formerly codenamed "Mendocino")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Barcelo R")
Versions	Default: affected Version 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ AI 300 Series Processors (formerly codenamed "Strix Point")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Cezanne")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Lucienne")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Barcelo")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Dali")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt")
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ AI Max 300 Series Processors
Versions	Default: affected Version AMD Ryzen™ Chipset Driver 7.04.09.545 is unaffected

Vendor	AMD
Product	AMD Ryzen™ Embedded 8000 Series Processors
Versions	Default: affected Version amd_chipset_software_7.06.02.123.exe is unaffected

Vendor	AMD
Product	AMD RYZEN™ Embedded 7000 Series Processors
Versions	Default: affected Version amd_chipset_software_7.06.02.123.exe is unaffected

Credits

Reported through AMD Bug Bounty Program

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4015.html

Problem Types

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE