CVE-2025-62625 PUBLISHED

Assigner: AMD
Reserved: 16.10.2025 Published: 14.05.2026 Updated: 14.05.2026

Improper privilege management in the KVM key download component could allow an attacker to swap tokens and download sensitive keys, potentially resulting in unauthorized access to privileged resources and loss of confidentiality.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
CVSS Score: 6

Product Status

Vendor AMD
Product AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 3000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ 3000 Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 9000HX Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ AI 300 Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 7000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 8000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 8000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 9000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 4000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 5000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 3000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 5000 Series Desktop Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ AI Max 300 Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ 7000 Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product Not public
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ 9000 Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Ryzen™ Threadripper™ PRO 9000 WX-Series Processors
Versions Default: affected
  • Version AMD Device Management Portal 3.0.0.895 is unaffected
Vendor AMD
Product AMD Device Management Portal (ADMP)
Versions Default: affected
  • Version 3.0.0.895 is unaffected

References

Problem Types

  • CWE-269 Privilege Escalation CWE