CVE-2025-0031

Published: Feb 10, 2026

Modified: Feb 11, 2026

PUBLISHED

Description

A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a different socket than the migration agent potentially resulting in loss of integrity.

Vendor	Product	Versions
AMD	AMD EPYC™ 9004 Series Processors	unaffected `GenoaPI 1.0.0.G`
AMD	AMD EPYC™ 7003 Series Processors	unaffected `MilanPI 1.0.0.H`
AMD	AMD EPYC™ 9005 Series Processors	unaffected `TurinPI 1.0.0.5`
AMD	AMD EPYC™ 8004 Series Processors	unaffected `GenoaPI 1.0.0.G`
AMD	AMD EPYC™ Embedded 7003 Series Processors	unaffected `EmbMilanPI-SP3 v9 1.0.0.C`
AMD	AMD EPYC™ Embedded 9003 Series Processors	unaffected `EmbGenoaPI-SP5 1.0.0.B`
AMD	AMD EPYC™ Embedded 9005 Series Processors	unaffected `EmbTurinPI-SP5_1.0.0.1`
AMD	AMD EPYC™ Embedded 9004 Series Processors	unaffected `EmbGenoaPI-SP5 1.0.0.B`
AMD	AMD EPYC™ Embedded 8004 Series Processors	unaffected `EmbGenoaPI-SP5 1.0.0.B`

Weaknesses (CWE)

CWE-416

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3023.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-0031

Description

Affected Products

Weaknesses (CWE)

References