CVE-2025-29948
CVE-2025-29948
In short
A flaw in AMD's SEV secure virtualization firmware allows a malicious hypervisor to bypass memory protections, putting guest data integrity at risk. This affects systems relying on AMD's secure encryption features to protect sensitive workloads.
Technical detail
Improper access control in AMD SEV firmware enables a hypervisor-level attacker to circumvent Reverse Map Table (RMP) protections, compromising SEV-SNP guest memory isolation. The vulnerability requires hypervisor-level access and could result in unauthorized guest memory modification, violating the security guarantees of encrypted virtualization.
Summary generated and translated by AI from the official description.
Improper access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity.
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N
Affected products
AMD · AMD EPYC™ 9005 Series ProcessorsAMD · AMD EPYC™ Embedded 9005 Series ProcessorsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →