Vulnerability in Amd Epyc™ 7003 Series Processors

CVE-2025-61971

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.

EPSS: 0.000 (3.7th percentile) — read the EPSS interpretation.

Affected products

Amd Epyc™ 7003 Series Processors — versions MilanPI-SP3_1.0.0.J
Amd Epyc™ 8004 Series Processors — versions GenoaPI_1.0.0.H
Amd Epyc™ 9004 Series Processors — versions GenoaPI_1.0.0.H
Amd Epyc™ 9005 Series Processors — versions TurinPI_1.0.0.8
Amd Epyc™ Embedded 7003 Series Processors — versions EmbMilanPI-SP3 1.0.0.D
Amd Epyc™ Embedded 8004 Series Processors — versions EmbGenoaPI-SP5 1.0.0.D
Amd Epyc™ Embedded 9004 Series Processors (Formerly Codenamed "Bergamo") — versions EmbGenoaPI-SP5 1.0.0.D
Amd Epyc™ Embedded 9004 Series Processors (Formerly Codenamed "Genoa") — versions EmbGenoaPI-SP5 1.0.0.D
Amd Epyc™ Embedded 9005 Series Processors — versions EmbeddedTurinPI_SP5_1004

Weakness classification (CWE)

CWE-1233

References

psirt@amd.com