External risk intelligence

AMD Device Metrics Exporter could allow an external attacker to cause GPU availability loss.

CVE advisorySeverity: CRITICAL (CVSS 9.2)

CVE-2026-0481

An external attacker can modify GPU configurations in the AMD Device Metrics Exporter. This allows them to disable device features, which could cause outages for GPU-dependent applications and disrupt critical computing workloads.

2Halo Surface Signal

External exposure likelihood

Halo Surface Signal score for CVE-2026-0481

The AMD Device Metrics Exporter is an internal infrastructure service for monitoring GPU telemetry within server environments. It is not designed for public internet exposure. Typical deployments are isolated behind internal controls, and reaching this service from the internet would require specific misconfiguration or a lack of network segmentation, as the service fails to restrict binding.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Horizon Alert

Summary of the vulnerability and why it matters

A security issue exists in the AMD Device Metrics Exporter, part of the ROCm ecosystem, that could allow an attacker to make unauthorized changes to your GPU configuration. This vulnerability could lead to a loss of availability for your systems.

  • Affects GPU configuration.
  • Potential for system unavailability.
  • Requires existing access to the service.

Attack Path

How an attacker could exploit the issue

An attacker could exploit this by directly accessing the AMD Device Metrics Exporter service, likely over a local network, to modify GPU configurations. This unauthorized access could lead to denial of service by disrupting GPU operations.

  • Requires network access.
  • Targets GPU configuration service.
  • Vulnerable if exposed internally.

Live Threat

Current exploitation, exposure, and threat context

This vulnerability in AMD's Device Metrics Exporter could allow a remote attacker to alter GPU configurations, potentially leading to service denial. While the impact is severe, the exploitability is constrained by the fact that the affected component is an internal infrastructure service. Attackers generally prefer vulnerabilities exposed to the public internet or those with widespread, easily accessible targets.

  • Internal service, not internet-facing.
  • Requires network misconfiguration for exploitation.
  • No public exploit or KEV signals.

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

Prioritize containing and isolating systems running the AMD Device Metrics Exporter if they are exposed externally or if there is evidence of exploitation. Given the critical CVSS score and potential for unauthorized GPU configuration changes, immediate action is crucial to prevent loss of availability.

  • Block external network access.
  • Review firewall and network segmentation.
  • Monitor for unauthorized GPU access.

Frequently asked questions

What is the AMD Device Metrics Exporter and its role in the ROCm ecosystem?

The AMD Device Metrics Exporter is an internal infrastructure service within the ROCm ecosystem. It is designed for monitoring GPU telemetry, primarily in server environments. This service is crucial for understanding and managing the performance and status of AMD GPUs.

What specific weakness allows for unauthorized changes to GPU configuration?

The vulnerability lies in the unrestricted IP address binding capability of the AMD Device Metrics Exporter. This weakness, categorized under CWE-1327, allows a remote attacker to bind to any IP address, bypassing intended network restrictions and enabling unauthorized modifications to the GPU configuration.

How can an attacker exploit the unrestricted IP address binding, and what is the scope of impact?

An attacker can exploit this by gaining network access to the AMD Device Metrics Exporter service. By leveraging the unrestricted IP binding, an attacker can then perform unauthorized changes to the GPU configuration. The scope of impact is primarily a loss of availability for the affected systems due to the disruption of GPU operations.

What is the relevance of this vulnerability, considering the Halo Surface Signal score?

The Halo Surface Signal rates this vulnerability as 'Unlikely' to be exploited externally. This is because the AMD Device Metrics Exporter is an internal service, not typically exposed to the public internet. Exploitation would likely require specific misconfigurations or a lack of network segmentation, making it less probable for external attackers.

What practical steps should be taken to respond to this vulnerability?

To mitigate this vulnerability, it is crucial to contain and isolate any systems running the AMD Device Metrics Exporter, especially if they are exposed externally. Reviewing firewall rules and network segmentation is essential. Monitoring for any unauthorized access attempts to GPU configurations should be a priority to prevent loss of availability.

References

Sources and related resources

Primary sources: NVD, CVE.org.

NVDPublished