AMD Versal Adaptive SoC Arm Trusted Firmware Secure Flag Misconfiguration Vulnerability

A vulnerability exists in the Arm Trusted Firmware for Cortex-A processors on AMD Versal Adaptive SoCs. The issue arises because the Secure Flag for Power State Coordination Interface (PSCI) commands was incorrectly set to secure, rather than reflecting the actual security state of the processor. This misconfiguration could allow PSCI requests to be falsely perceived as originating from secure state processors, instead of non-secure ones.

Impact

This vulnerability could lead to a loss of availability by improperly managing power states, potentially causing unintended behavior in system operations that rely on accurate security state information.

Remediation

AMD plans to address this vulnerability in the 2025.2 software release by ensuring that the Arm Cortex-A processor's security state is correctly communicated to the Arm Trusted Firmware, allowing for proper filtering of PSCI requests.