PT-2026-48127 · Amd · Amd Secure Processor
Published
2026-06-09
·
Updated
2026-06-09
·
CVE-2025-54509
CVSS v4.0
4.0
Medium
| Vector | AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
AMD Secure Processor (affected versions not specified)
Description
Improper access control for the register interface in the input-output memory management unit (IOMMU) allows a privileged attacker, such as a malicious hypervisor, to cause non-coherent accesses by the AMD secure processor (ASP). This can desynchronize memory views between the Platform Security Processor (PSP) and the CPU, potentially resulting in loss of integrity and granting unauthorized read/write access to a confidential virtual machine.
Recommendations
Apply the patches released by AMD.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Amd Secure Processor