Primary

Context

AMD Secure Encrypted Virtualization Firmware Improper Initialization Vulnerability Allowing Memory Integrity Corruption

Vulnerability

A vulnerability exists in the AMD Secure Encrypted Virtualization (SEV) firmware due to improper initialization. This issue can enable an admin-privileged attacker to corrupt memory covered by the reverse map page (RMP), potentially leading to a loss of integrity in guest memory.

Impact

Exploitation of this vulnerability could result in unauthorized corruption of RMP-covered memory, causing a loss of integrity in guest memory.

Remediation

Users are advised to update to the AMD EPYC Platform Initialization (PI) firmware version 1.0.0.6, released on June 30, 2025. For specific BIOS update details, please contact your OEM.

Added: Feb 10, 2026, 10:33 PM

Updated: Feb 10, 2026, 10:33 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD Secure Encrypted Virtualization Firmware Improper Initialization Vulnerability Allowing Memory Integrity Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating