PT-2026-33168 · Amd · Platform Configuration Blob Smm Driver
Published
2025-08-26
·
Updated
2026-04-18
·
CVE-2025-54502
CVSS v4.0
7.1
High
| Vector | AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
AMD Platform Configuration Blob (APCB) SMM driver (affected versions not specified)
Description
Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation, potentially resulting in arbitrary code execution.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exposure of Resource to Wrong Sphere
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Platform Configuration Blob Smm Driver