Vulnerability in Amd Epyc™ 7002 Series Processors

CVE-2025-54518

Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.

EPSS: 0.000 (2.9th percentile) — read the EPSS interpretation.

Affected products

Amd Epyc™ 7002 Series Processors — versions os kernel
Amd Epyc™ Embedded 7002 Series Processors — versions OS kernel
Amd Ryzen Embedded V2000a Series Processors — versions EmbeddedV2KAPI-FP6 1.0.0.A
Amd Ryzen™ 3000 Series Desktop Processors — versions ComboAM4v2 1.2.0.10, ComboAM4PI 1.0.0.10
Amd Ryzen™ 4000 Series Desktop Processors — versions ComboAM4v2 1.2.0.10
Amd Ryzen™ 4000 Series Mobile Processors With Radeon™ Graphics — versions RenoirPI-FP6_1.0.0.Ed
Amd Ryzen™ 5000 Series Desktop Processors With Radeon™ Graphics — versions ComboAM4v2 1.2.0.10
Amd Ryzen™ 5000 Series Mobile Processors With Radeon™ Graphics — versions CezannePI-FP6_1.0.1.1d
Amd Ryzen™ 7020 Series Processors With Radeon™ Graphics — versions MendocinoPI-FT6_1.0.0.7f
Amd Ryzen™ 7030 Series Mobile Processors With Radeon™ Graphics — versions CezannePI-FP6_1.0.1.1d

Weakness classification (CWE)

CWE-1189

References