Vulnerability in Amd Epyc™ 8004 Series Processors
CVE-2025-29934
A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.
EPSS: 0.000 (1.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N.
Affected products
- Amd Epyc™ 8004 Series Processors — versions Genoa 1.0.0.E
- Amd Epyc™ 9004 Series Processors — versions Genoa 1.0.0.E
- Amd Epyc™ 9005 Series Processors — versions Turin 1.0.0.6
- Amd Epyc™ Embedded 7003 Series Processors — versions EmbMilanPI-SP3 v9 1.0.0.B
- Amd Epyc™ Embedded 8004 Series Processors — versions EmbGenoaPI-SP5 1.0.0.A
- Amd Epyc™ Embedded 9004 Series Processors (Formerly Codenamed "Bergamo") — versions EmbGenoaPI-SP5 1.0.0.A
- Amd Epyc™ Embedded 9004 Series Processors (Formerly Codenamed "Genoa") — versions EmbGenoaPI-SP5 1.0.0.A
- Amd Epyc™ Embedded 9005 Series Processors — versions EmbTurinPI-SP5 1.0.0.1
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2025-29934?
- CVE-2025-29934 is a medium-severity vulnerability in Amd Epyc™ 8004 Series Processors, classified under Incomplete Cleanup. CVSS score: 5.3/10. Published 2025-11-21.
- How severe is CVE-2025-29934?
- Medium severity. CVSS v3 base score is 5.3 out of 10.