CVE-2025-54515

LOW

Versal Adaptive SoC - Privilege Escalation

Title source: llm

Description

The Secure Flag passed to Versal™ Adaptive SoC’s Trusted Firmware for Cortex®-A processors (TF-A) for Arm’s Power State Coordination Interface (PSCI) commands were incorrectly set to secure instead of using the processor’s actual security state. This would allow the PSCI requests to appear they were from processors in the secure state instead of the non-secure state.

References (1)

[Vendor Advisory] https://www.amd.com/en/resources/product-security/bulletin/amd-sb-8020.html

Scores

CVSS v4 1.0

EPSS 0.0003

EPSS Percentile 9.9%

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-1284

Status published

Products (8)

AMD/Alveo™ V80 Compute Accelerator 2025.2

AMD/Versal™ AI Core Series 2025.2

AMD/Versal™ AI Edge Series 2025.2

AMD/Versal™ HBM Series 2025.2

AMD/Versal™ Premium Series 2025.2

AMD/Versal™ Prime Series 2025.2

AMD/Versal™ RF Series 2025.2

AMD/Versal™ Adaptive SoC Devices 2025.2

Published Nov 23, 2025

Tracked Since Feb 18, 2026