CVE-2025-48516

Vulnerability Description

Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent denial of service condition or affect the integrity of the memory module.

Related Weaknesses (CWE)

CWE-276

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html

FAQ

What is CVE-2025-48516?

CVE-2025-48516 is a documented vulnerability. Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent ...

How severe is CVE-2025-48516?

CVSS scoring is not yet available for CVE-2025-48516. Check NVD for updates.

Is there a patch for CVE-2025-48516?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.