CVE-2025-54510
Published: Apr 16, 2026
Modified: May 13, 2026
Description
A missing lock verification in AMD Secure Processor (ASP) firmware may permit a locally authenticated attacker with administrative privileges to alter MMIO routing on some Zen 5-based products, potentially compromising guest system integrity.
| Vendor | Product | Versions |
|---|---|---|
AMD | AMD EPYC™ 9004 Series Processors | unaffected GenoaPI_1.0.0.H |
AMD | AMD EPYC™ 7003 Series Processors | unaffected MilanPI-SP3_1.0.0.J |
AMD | AMD EPYC™ 9005 Series Processors | unaffected TurinPI_1.0.0.8 |
AMD | AMD EPYC™ 8004 Series Processors | unaffected GenoaPI_1.0.0.H |
AMD | AMD EPYC™ Embedded 7003 Series Processors | unaffected EmbMilanPI-SP3 1.0.0.D |
AMD | AMD EPYC™ Embedded 9004 Series Processors | unaffected EmbGenoaPI-SP5 1.0.0.D |
AMD | AMD EPYC™ Embedded 9004 Series Processors | unaffected EmbGenoaPI-SP5 1.0.0.D |
AMD | AMD EPYC™ Embedded 8004 Series Processors | unaffected EmbGenoaPI-SP5 1.0.0.D |
AMD | AMD EPYC™ Embedded 9005 Series Processors | unaffected EmbeddedTurinPI_SP5_1004 |
Weaknesses (CWE)
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now