PT-2026-7445 · Amd+1 · Amd Epyc™ 7003 Series Processors+9
Published
2026-02-10
·
Updated
2026-02-10
·
CVE-2025-0031
CVSS v4.0
4.6
Medium
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N |
Name of the Vulnerable Software and Affected Versions
SEV firmware (affected versions not specified)
Description
A use after free in the firmware could allow a malicious hypervisor to activate a migrated guest using the
SINGLE SOCKET policy on a socket different from the migration agent, potentially leading to a loss of integrity. Use after free is a condition where a program continues to use a pointer after it has been freed, which can be exploited to corrupt memory.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Amd Epyc™ 7003 Series Processors
Amd Epyc™ 8004 Series Processors
Amd Epyc™ 9004 Series Processors
Amd Epyc™ 9005 Series Processors
Amd Epyc™ Embedded 7003 Series Processors
Amd Epyc™ Embedded 8004 Series Processors
Amd Epyc™ Embedded 9003 Series Processors
Amd Epyc™ Embedded 9004 Series Processors
Amd Epyc™ Embedded 9005 Series Processors
Amd64-Microcode