CVE-2025-62864

Published: Dec 16, 2025

Modified: Dec 17, 2025

PUBLISHED

Description

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM MMCommunicate service that could result in an out-of-bounds write within the UEFI-MM Secure Partition context.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://amperecomputing.com/products/product-security

https://amperecomputing.com/products/security-bulletins/amp-sb-0007

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-62864

Description

Affected Products

References