Primary

Context

AMD RomArmor Missing Authorization Vulnerability Allowing Bypass of ROM Protections

Vulnerability

A vulnerability exists in AMD RomArmor due to missing authorization, which could enable an attacker to bypass ROMArmor protections when the system resumes from standby. This flaw may lead to a breach of confidentiality and integrity.

Impact

Exploitation of this vulnerability could result in unauthorized access to ROMArmor protections, potentially allowing for malicious modifications or access to sensitive data.

Remediation

Users are advised to update to the latest Platform Initialization (PI) firmware version. Specific update instructions can be obtained from the Original Equipment Manufacturers (OEM) for the AMD product in use.

Added: Sep 6, 2025, 6:41 PM

Updated: Sep 6, 2025, 6:41 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

3.3

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD RomArmor Missing Authorization Vulnerability Allowing Bypass of ROM Protections

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating