CVE-2025-48514

🗓️ 10 Feb 2026 19:14:22Reported by AMDType

CVE-2025-48514: SEV firmware lacks proper access control, enabling an SEV-ES guest to attack an SNP guest and risk confidentiality.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2025-48514	10 Feb 202619:14	–	attackerkb
Amd	AMD EPYC™ and AMD EPYC™ Embedded Series Processor Vulnerabilities – February 2026	10 Feb 202600:00	–	amd
Circl	CVE-2025-48514	19 Mar 202600:00	–	circl
CNNVD	AMD Processors 安全漏洞	10 Feb 202600:00	–	cnnvd
Cvelist	CVE-2025-48514	10 Feb 202619:14	–	cvelist
Debian CVE	CVE-2025-48514	10 Feb 202619:14	–	debiancve
NVD	CVE-2025-48514	10 Feb 202620:16	–	nvd
OSV	DEBIAN-CVE-2025-48514	10 Feb 202620:16	–	osv
OSV	UBUNTU-CVE-2025-48514	10 Feb 202620:16	–	osv
Positive Technologies	PT-2026-7452	1 Jan 202500:00	–	ptsecurity

[
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ 9004 Series Processors",
    "versions": [
      {
        "version": "Genoa++_1.0.0.H",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ 7003 Series Processors",
    "versions": [
      {
        "version": "MilanPI 1.0.0.H",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ 9005 Series Processors",
    "versions": [
      {
        "version": "TurinPI 1.0.0.6",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ 8004 Series Processors",
    "versions": [
      {
        "version": "Genoa++_1.0.0.H",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ Embedded 7003 Series Processors",
    "versions": [
      {
        "version": "EmbMilanPI-SP3 v9 1.0.0.C",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed \"Genoa\")",
    "versions": [
      {
        "version": "EmbGenoaPI-SP5 1.0.0.C",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ Embedded 9005 Series Processors",
    "versions": [
      {
        "version": "EmbTurinPI-SP5_1.0.0.1",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed \"Bergamo\")",
    "versions": [
      {
        "version": "EmbGenoaPI-SP5 1.0.0.C",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD EPYC™ Embedded 8004 Series Processors",
    "versions": [
      {
        "version": "EmbGenoaPI-SP5 1.0.0.C",
        "status": "unaffected"
      }
    ]
  }
]

Source	Link
amd	www.amd.com/en/resources/product-security/bulletin/AMD-SB-3023.html

15 Apr 2026 00:35Current

5.5Medium risk

Vulners AI Score5.5

CVSS 44

EPSS0.00018

SSVC

CWE-1220