Amd epyc embedded 9005 series processors
This hub aggregates every CVE we track for Amd epyc embedded 9005 series processors, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
LOW6MEDIUM2HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
1
7
0
0
0
0
2024-072026-06
Latest CVEs
The 9 most recently published vulnerabilities affecting Amd epyc embedded 9005 series processors.
- CVE-2025-0029Improper handling of error condition during host-induced faults can allow a local high-privileged attack to selectively drop guest DMA writes, potentially resulting in a loss of SEV-SNP guest memor...2.5
- CVE-2025-48514Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.3.2
- CVE-2025-54514Improper isolation of shared resources on a system on a chip by a malicious local attacker with high privileges could potentially lead to a partial loss of integrity.3.3
- CVE-2025-48509Missing Checks in certain functions related to RMP initialization can allow a local admin privileged attacker to cause misidentification of I/O memory, potentially resulting in a loss of guest memo...2.5
- CVE-2025-0012Improper handling of overlap between the segmented reverse map table (RMP) and system management mode (SMM) memory could allow a privileged attacker corrupt or partially infer SMM memory resulting ...5.1
- CVE-2025-52536Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to downgrade firmware potentially resulting in a loss of integrity.6.0
- CVE-2025-48517Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests pote...3.2
- CVE-2025-29943Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline potentially resulting in the corruption of the stack pointer inside ...3.2
- CVE-2025-62626Improper handling of insufficient entropy in the AMD CPUs could allow a local attacker to influence the values returned by the RDSEED instruction, potentially resulting in the consumption of insuff...7.1
Product normalization is registry-driven with AI assist and human review. How it works