CVE-2025-48515

🗓️ 10 Feb 2026 19:49:14Reported by AMDType

CVE-2025-48515 sanitization flaw in AMD Secure Processor boot loader enables memory overwrite and potential arbitrary code execution via SPIROM upgrade.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2025-48515	10 Feb 202619:49	–	attackerkb
Amd	AMD Athlon™ and AMD Ryzen™ Processor Vulnerabilities – February 2026	10 Feb 202600:00	–	amd
CNNVD	AMD Ryzen 安全漏洞	10 Feb 202600:00	–	cnnvd
CVE	CVE-2025-48515	10 Feb 202619:49	–	cve
Hewlett-Packard	AMD Processors February 2026 Security Update	10 Feb 202600:00	–	hp
NVD	CVE-2025-48515	10 Feb 202620:16	–	nvd
Positive Technologies	PT-2026-7464	10 Feb 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-48515	16 Feb 202619:30	–	redhatcve
Vulnrichment	CVE-2025-48515	10 Feb 202619:49	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics",
    "versions": [
      {
        "version": "RenoirPI-FP6 1.0.0.Ed",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics",
    "versions": [
      {
        "version": "CezannePI-FP6_1.0.1.1c",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics",
    "versions": [
      {
        "version": "CezannePI-FP6_1.0.1.1c",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ 4000 Series Desktop Processors",
    "versions": [
      {
        "version": "RenoirPI-FP6_1.0.0.Ec",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics",
    "versions": [
      {
        "version": "ComboAM4v2PI_1.2.0.11",
        "status": "unaffected"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "vendor": "AMD",
    "product": "AMD Ryzen™ Embedded V2000 Series Processors",
    "versions": [
      {
        "version": "EmbeddedPI-FP6_1.0.0.D",
        "status": "unaffected"
      }
    ]
  }
]

Source	Link
amd	www.amd.com/en/resources/product-security/bulletin/AMD-SB-4013.html

10 Feb 2026 19:49Current

CVSS 45.4

EPSS0.00126

CWE-190