PT-2026-40778 · Amd+1 · Zen 2+1
Published
2026-05-12
·
Updated
2026-06-02
·
CVE-2025-54518
CVSS v4.0
7.3
High
| Vector | AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
AMD Zen 2-based products (affected versions not specified)
Description
Improper isolation of shared resources within the CPU operation (op/µop) cache on Zen 2-based products can cause incorrect instructions to be executed at a higher privilege level. This hardware flaw allows for the corruption of the opcode cache, which could enable an attacker to escalate privileges, such as moving from userspace to kernel level or from a guest virtual machine to the host environment, potentially bypassing virtualization isolation (e.g., the Xen hypervisor).
Recommendations
Update the BIOS to apply the latest microcode updates.
For Xen versions 4.17 through 4.21, apply the available security patches.
Apply the available security patches for the Linux kernel.
For EPYC 7002 processors, implement OS-level blocks until a microcode fix is released.
Fix
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Zen 2