Vulnerability in Amd Epyc™ 8004 Series Processors
CVE-2025-29943
Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline potentially resulting in the corruption of the stack pointer inside an SEV-SNP guest.
EPSS: 0.002 (10.2th percentile) — read the EPSS interpretation.
Affected products
- Amd Epyc™ 8004 Series Processors — versions Genoa++_1.0.0.H
- Amd Epyc™ 9004 Series Processors — versions Genoa++_1.0.0.H
- Amd Epyc™ 9005 Series Processors — versions TurinPI_1.0.0.6
- Amd Epyc™ Embedded 7003 Series Processors — versions EmbMilanPI-SP3 v9 1.0.0.C
- Amd Epyc™ Embedded 9005 Series Processors — versions EmbTurinPI-SP5_1.0.0.1
Weakness classification (CWE)
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2025-29943?
- CVE-2025-29943 is a vulnerability in Amd Epyc™ 8004 Series Processors, classified under Write-what-where Condition. Published 2026-01-16.
- Is CVE-2025-29943 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.