Vulnerability in Amd Epyc™ 7001 Series Processors
CVE-2025-29950
Improper input validation in system management mode (SMM) could allow a privileged attacker to overwrite stack memory leading to arbitrary code execution.
EPSS: 0.000 (0.4th percentile) — read the EPSS interpretation.
Affected products
- Amd Epyc™ 7001 Series Processors — versions NaplesPI 1.0.0.R
- Amd Epyc™ 7002 Series Processors — versions RomePI 1.0.0.N
- Amd Epyc™ 7003 Series Processors — versions MilanPI 1.0.0.H
- Amd Epyc™ 9004 Series Processors — versions GenoaPI 1.0.0.G
- Amd Epyc™ 9005 Series Processors — versions TurinPI 1.0.0.6
- Amd Epyc™ 9v64h Processor — versions MI300C 1.0.0.2
- Amd Epyc™ Embedded 3000 Series Processors — versions SnowyOwl_SP4_SP4r2.1.1.0.H
- Amd Epyc™ Embedded 7002 Series Processors — versions EmbRomePI-SP3 1.0.0.F
- Amd Epyc™ Embedded 7003 Series Processors — versions EmbMilanPI-SP3 v9 1.0.0.C
- Amd Epyc™ Embedded 8004 Series Processors — versions EmbGenoaPI-SP5 1.0.0.B