AMD EPYC 9004
Moderate fix1 remedy
cpe:2.3:h:amd:epyc_9754:*:*:*:*:*:*:*, +5 more
Moderate fix1 remedy
AMD EPYC and Ryzen Embedded Processors CPU Microcode Loading Vulnerability Allowing Integrity Loss in Instruction Execution
Vulnerability
Patched
A vulnerability exists in the microcode patch loading process of AMD EPYC and Ryzen Embedded processors. This issue, caused by improper cleanup after loading CPU microcode patches, could enable an attacker with local administrator privileges to inject malicious microcode. The exploitation of this vulnerability may lead to a loss of integrity in x86 instruction execution.
Impact
Exploitation of this vulnerability could result in a compromised integrity of x86 instruction execution, allowing for potentially malicious actions to be carried out at the instruction level.
Remediation
Users are advised to update to the latest Platform Initialization (PI) firmware version. Specific update instructions can be obtained from the original equipment manufacturer (OEM).
Added: Sep 7, 2025, 1:45 AM
Updated: Sep 7, 2025, 1:45 AM
Vulnerability Rating
Custom Algorithm
spread
6.6impact
2.5exploitability
2.8remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.