CVE-2025-29952 | THREATINT

Description

Improper Initialization within the AMD Secure Encrypted Virtualization (SEV) firmware can allow an admin privileged attacker to corrupt RMP covered memory, potentially resulting in loss of guest memory integrity

PUBLISHED Reserved 2025-03-12 | Published 2026-02-10 | Updated 2026-02-10 | Assigner AMD

MEDIUM: 5.9CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

Problem types

CWE-457 Use of Uninitialized Variable

Product status

Default status

affected

TurinPI 1.0.0.6

unaffected

Default status

affected

EmbTurinPI-SP5_1.0.0.1

unaffected

References

www.amd.com/...es/product-security/bulletin/AMD-SB-3023.html

cve.org (CVE-2025-29952)

nvd.nist.gov (CVE-2025-29952)

Download JSON