CVE-2025-29934

MEDIUM

AMD CPU - Privilege Escalation

Title source: llm

Description

A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.

References (1)

[Vendor Advisory] https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3029.html

Scores

CVSS v3 5.3

EPSS 0.0001

EPSS Percentile 1.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-459

Status published

Products (8)

AMD/AMD EPYC™ 8004 Series Processors Genoa 1.0.0.E

AMD/AMD EPYC™ 9004 Series Processors Genoa 1.0.0.E

AMD/AMD EPYC™ 9005 Series Processors Turin 1.0.0.6

AMD/AMD EPYC™ Embedded 7003 Series Processors EmbMilanPI-SP3 v9 1.0.0.B

AMD/AMD EPYC™ Embedded 8004 Series Processors EmbGenoaPI-SP5 1.0.0.A

AMD/AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Bergamo") EmbGenoaPI-SP5 1.0.0.A

AMD/AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed "Genoa") EmbGenoaPI-SP5 1.0.0.A

AMD/AMD EPYC™ Embedded 9005 Series Processors EmbTurinPI-SP5 1.0.0.1

Published Nov 21, 2025

Tracked Since Feb 18, 2026