Security Advisory: Security Update Regarding AMD Processor Vulnerability
SA: Aivres-SA-202605001
Initial Release: 05/28/2026
Source: AMD Security Bulletin
Potential Security Impact: Information Disclosure, Arbitrary Code Execution, Denial of Service
Vulnerability Summary:
| CVE | CVE Description |
| CVE-2025-52533 | Improper access control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality or integrity. |
| CVE-2025-29950 | Improper input validation in system management mode (SMM) could allow a privileged attacker to overwrite stack memory, potentially leading to arbitrary code execution. |
| CVE-2025-29939 | Improper access control in AMD Secure Encrypted Virtualization (SEV) could allow a privileged attacker to write to the reverse map page (RMP) during Secure Nested Paging (SNP) initialization, potentially resulting in a loss of guest memory confidentiality and integrity. |
| CVE-2025-52536 | Improper prevention of lock bit modification in AMD Secure Encrypted Virtualization (SEV) firmware could allow a privileged attacker to downgrade firmware, potentially resulting in a loss of integrity. |
| CVE-2024-21953 | Improper input validation in I/O Memory Management Unit (IOMMU) could allow a malicious hypervisor to reconfigure IOMMU registers, potentially resulting in a loss of guest memory integrity. |
| CVE-2025-0031 | A use-after-free vulnerability in the AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicious hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a different socket than the migration agent, potentially resulting in a loss of integrity. |
| CVE-2024-36310 | Improper input validation in the system management mode (SMM) communications buffer could allow a privileged attacker to perform an out-of-bounds read or write to System Management RAM (SMRAM), potentially resulting in a loss of confidentiality or integrity. |
| CVE-2025-48514 | Insufficient granularity of access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a privileged attacker to create a AMD Secure Encrypted Virtualization-Encryption Standard (SEV-ES) guest to attack a AMD Secure Nested Paging (SNP) guest, potentially resulting in a loss of confidentiality. |
| CVE-2025-29943 | Improper access control within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline, potentially resulting in the corruption of the stack pointer inside an SEV-SNP guest. |
| CVE-2025-0033 | Improper access control within AMD SEV-SNP could allow an admin-privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity. |
| CVE-2025-29934 | A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity. |
CVSS Score:
| CVE | CVSS Score | CVSS Vector |
| CVE-2025-52533 | 8.7 | CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N |
| CVE-2025-29950 | 7.1 | CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
| CVE-2025-29939 | 6.9 | CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:H/SI:H/SA:N |
| CVE-2025-52536 | 6.7 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N |
| CVE-2024-21953 | 5.9 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N |
| CVE-2025-0031 | 4.6 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N |
| CVE-2024-36310 | 4.6 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
| CVE-2025-48514 | 4 | CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N |
| CVE-2025-29943 | 4.6 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N |
| CVE-2025-0033 | 5.9 | CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N |
| CVE-2025-29934 | 6.8 | CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N |
Fixed Product Version:
| Product | BIOS Update Version |
| KR1280E3 | 01.12.00 |
| KR1180E3 | 01.09.00 |
| KR2180E3 | 01.09.00 |
| KR2280E3 | 01.12.00 |
| KR4268E3 | 01.07.00 |
| KR6288E3 | 01.07.00 |
| KR1180E2 | 02.00.00 |
| KR1280E2 | 07.00.00 |
| KR2180E2 | 02.00.00 |
| KR2280E2 | 07.00.00 |
| KR4268E2 | 04.00.00 |
Resolution:
Download the BIOS fix for your specific product model, perform the BIOS update, and restart the system for the changes to take effect.
Revision History:
Version 1 – May 28, 2026 Initial release
Reference links:
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3023.html
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3027.html
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3020.html
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3029.html
Declaration:
Aivres shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided “as is” without warranty of any kind. To the extent permitted by law, Aivres disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose, title and non-infringement. In no event shall Aivres or any of its directly or indirectly controlled subsidiaries or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. Your use of the document, by whatsoever means, will be totally at your own risk. Aivres is entitled to amend or update this document from time to time.