CVE-2025-48503 PUBLISHED

Assigner: AMD
Reserved: 22.05.2025 Published: 11.02.2026 Updated: 11.02.2026

A DLL hijacking vulnerability in the AMD Software Installer could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS Score: 7.8

Attack Vector	Local	Scope	Changed
Attack Complexity	High	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	AMD
Product	AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Renoir")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Picasso")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics (formerly codenamed "Mendocino")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Dragon Range")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed "Raphael"/"Raphael X3D")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Barcelo R")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ AI 300 Series Processors (formerly codenamed "Strix Point")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed "Raphael"/"Raphael-X3D")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed "Phoenix")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed "Phoenix")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 9000 Series Desktop Processors (formerly codenamed "Granite Ridge")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Cezanne")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Lucienne")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Barcelo")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 4000 Series Desktop Processors (formerly codenamed "Renoir")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics (formerly codenamed "Cezanne")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Dali")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Dali")
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ RX 5000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ RX 6000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ RX 7000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	Placeholder
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ PRO W5000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ PRO W6000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ PRO W7000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Vendor	AMD
Product	AMD Radeon™ RX 9000 Series Graphics Products
Versions	Default: affected Version amd-software-adrenalin-edition-25.5.1-minimalsetup-250513_web.exe is unaffected

Credits

Reported through AMD Bug Bounty Program

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.html

Problem Types

CWE-427 Uncontrolled Search Path Element CWE