Vulnerability in Amd Epyc™ 9005 Series Processors

CVE-2025-48517

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of con…

EPSS: 0.001 (3.4th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References