MEDIUM SeverityCVSS 4.05.9CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

CVE-2025-61971

Last updated May 13, 2026 · Published May 13, 2026

Description

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.

Affected products

1 listed

AMD:AMD EPYC™ 7003 Series Processors; AMD:AMD EPYC™ 8004 Series Processors; AMD:AMD EPYC™ 9004 Series Processors; AMD:AMD EPYC™ 9005 Series Processors; AMD:AMD EPYC™ Embedded 7003 Series Processors; AMD:AMD EPYC™ Embedded 8004 Series Processors; AMD:AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Genoa"); AMD:AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Bergamo"); AMD:AMD EPYC™ Embedded 9005 Series Processors

Mappings

CWE

CWE-1233

CAPEC

None listed.