CVE-2025-0012
BaseFortify
Publication date: 2026-02-10
Last updated on: 2026-02-10
Assigner: Advanced Micro Devices Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| amd | epyc | From 1.0.0 (inc) |
| amd | epyc | to 1.0.0.f (inc) |
| amd | epyc | to 1.0.0.g (inc) |
| amd | epyc | From 1.37.2A (inc) |
| amd | epyc | From 1.37.31 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-1260 | The product allows address regions to overlap, which can result in the bypassing of intended memory protection. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves improper handling of the overlap between the segmented reverse map table (RMP) and system management mode (SMM) memory. A privileged attacker could exploit this flaw to corrupt or partially infer the contents of SMM memory.
The result of this exploitation could lead to a loss of integrity or confidentiality of the SMM memory.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow a privileged attacker to corrupt or gain partial knowledge of sensitive system management mode (SMM) memory.
This could lead to a loss of integrity, meaning the attacker could alter critical system data, or a loss of confidentiality, meaning sensitive information could be exposed.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know