CVE-2025-54502 | AMD EPYC 9004 Processors exposure of resource (EUVD-2025-209508)
A vulnerability was found in AMD EPYC 9004 Processors, EPYC 7003 Processors, EPYC 7002 Processors, EPYC 4004 Processors, EPYC 9005 Processors, Instinct MI300A Processors, EPYC 9V64H Processor, EPYC 8004 Processors, Ryzen 4000 Mobile Processors with Radeon Graphics, Ryzen 7035 Processors with Radeon Graphics, Athlon 3000 Mobile Processors with Radeon Graphics, Ryzen 7040 Mobile Processors with Radeon Graphics, Ryzen 7020 Processors with Radeon Graphics, Ryzen 7045 Mobile Processors with Radeon Graphics, Ryzen 7000 Desktop Processors, Ryzen 3000 Desktop Processors, Ryzen Threadripper PRO 3000 WX-Series Processors, Ryzen 7030 Mobile Processors with Radeon Graphics, Ryzen 9000HX Processors, Ryzen AI 300 Processors, Ryzen Threadripper PRO 5000 WX-Series Processors, Ryzen Threadripper PRO 7000 WX-Series Processors, Ryzen 8000 Desktop Processors, Ryzen 9000 Desktop Processors, Ryzen 5000 Mobile Processors with Radeon Graphics, Ryzen 4000 Desktop Processors, Ryzen 5000 Desktop Processors, Ryzen 5000 Desktop Processors with Radeon Graphics, Ryzen 8040 Mobile Processors with Radeon Graphics, Ryzen 3000 Mobile Processors with Radeon Graphics, Ryzen 6000 Processors with Radeon Graphics, Ryzen AI Max 300 Processors, Ryzen Z1 Processors, Ryzen Z2 Processors Extreme, Ryzen Z2 Processors, Ryzen Z2 Processors Go, Ryzen Threadripper 7000 Processors, Ryzen Threadripper 9000 Processors, Ryzen Threadripper PRO 9000 WX-Series Processors, EPYC Embedded 7003 Processors, EPYC Embedded 9004 Processors, EPYC Embedded 7002 Processors, Ryzen Embedded R1000 Processors, Ryzen Embedded R2000 Processors, Ryzen Embedded V1000 Processors, Ryzen Embedded 5000 Processors, Ryzen Embedded V2000 Processors, Ryzen Embedded V3000 Processors, EPYC Embedded 8004 Processors, Ryzen Embedded 9000 Processors, Ryzen Embedded 8000 Processors, Ryzen Embedded 7000 Processors and EPYC Embedded 9005 Processors. It has been classified as critical. The affected element is an unknown function. Performing a manipulation results in exposure of resource.
This vulnerability is reported as CVE-2025-54502. The attack requires a local approach. No exploit exists.
Upgrading the affected component is recommended.VulDB Recent EntriesRead More