Amd epyc 7003 series
This hub aggregates every CVE we track for Amd epyc 7003 series, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
10
CVEs tracked
0
Critical
3
High
0
In CISA KEV
Severity distribution
MEDIUM4LOW3HIGH3
Monthly trend
0
1
0
0
0
0
0
1
0
0
0
0
0
0
0
1
0
0
1
4
0
2
0
0
2024-072026-06
Latest CVEs
The 10 most recently published vulnerabilities affecting Amd epyc 7003 series.
- CVE-2025-54502Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resul...7.5
- CVE-2023-20585Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting ...5.3
- CVE-2025-52533Improper Access Control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality or integrity.7.7
- CVE-2025-48514Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.3.2
- CVE-2025-48509Missing Checks in certain functions related to RMP initialization can allow a local admin privileged attacker to cause misidentification of I/O memory, potentially resulting in a loss of guest memo...2.5
- CVE-2025-52536Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to downgrade firmware potentially resulting in a loss of integrity.6.0
- CVE-2025-29943Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline potentially resulting in the corruption of the stack pointer inside ...3.2
- CVE-2025-0033Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity.6.0
- CVE-2024-56161Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality a...7.2
- CVE-2024-8105Insecure Platform Key (PK) used in UEFI system firmware signature6.4
Product normalization is registry-driven with AI assist and human review. How it works