CVE-2025-54502

Vulnerability Description

Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.

Related Weaknesses (CWE)

CWE-668

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7054.html

FAQ

What is CVE-2025-54502?

CVE-2025-54502 is a documented vulnerability. Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resultin...

How severe is CVE-2025-54502?

CVSS scoring is not yet available for CVE-2025-54502. Check NVD for updates.

Is there a patch for CVE-2025-54502?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.