{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-54502","assignerOrgId":"b58fc414-a1e4-4f92-9d70-1add41838648","state":"PUBLISHED","assignerShortName":"AMD","dateReserved":"2025-07-23T15:01:50.731Z","datePublished":"2026-04-16T18:46:13.377Z","dateUpdated":"2026-06-30T12:07:18.620Z"},"containers":{"cna":{"providerMetadata":{"orgId":"b58fc414-a1e4-4f92-9d70-1add41838648","shortName":"AMD","dateUpdated":"2026-04-16T19:12:58.645Z"},"datePublic":"2026-04-16T18:45:00.000Z","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-668","description":"CWE-668  Exposure of Resource to Wrong Sphere","type":"CWE"}]}],"affected":[{"vendor":"AMD","product":"AMD EPYC™ 9004 Series Processors","versions":[{"status":"unaffected","version":"GenoaPI_1.0.0.H"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 7003 Series Processors","versions":[{"status":"unaffected","version":"MilanPI-SP3_1.0.0.J"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 7002 Series Processors","versions":[{"status":"unaffected","version":"Rome-1.0.0.P"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 4004 Series Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.0.0.d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 9005 Series Processors","versions":[{"status":"unaffected","version":"TurinPI-SP5_1.0.0.9"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Instinct™ MI300A Series Processors","versions":[{"status":"unaffected","version":"MI300A 1.0.0.C"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 9V64H Processor","versions":[{"status":"unaffected","version":"MI300C 1.0.0.3"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ 8004 Series Processors","versions":[{"status":"unaffected","version":"GenoaPI_1.0.0.H"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"RenoirPI-FP6 1.0.0.Ed"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"RembrandtPI-FP7_1.0.0.Bg"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"PicassoPI-FP5_1.0.1.2e"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"PhoenixPI-FP8-FP7_1.2.0.0f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"MendocinoPI-FT6_1.0.0.7g"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"DragonRangeFL1PI 1.0.0.3k"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.0.0.d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 3000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM4v2PI 1.2.0.10"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors","versions":[{"status":"unaffected","version":"ChagallWSPI-sWRX8 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"CezannePI-FP6_1.0.1.1d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors","versions":[{"status":"unaffected","version":"CastlePeakWSPI-sWRX8 1.0.0.I"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 9000HX Series Processors","versions":[{"status":"unaffected","version":"FireRangeFL1PI 1.0.0.0d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ AI 300 Series Processors","versions":[{"status":"unaffected","version":"StrixKrackanPI-FP8_1.1.0.0e"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors","versions":[{"status":"unaffected","version":"ChagallWSPI-sWRX8 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors","versions":[{"status":"unaffected","version":"StormPeakPI-SP6 1.0.0.1m"},{"status":"unaffected","version":"StormPeakPI-SP6_1.1.0.0k"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.1.0.3f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.0.3h"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 8000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.1.0.3f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 8000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.0.3h"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 9000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.0.3h"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"CezannePI-FP6_1.0.1.1d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"CezannePI-FP6_1.0.1.1d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 4000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM4v2PI 1.2.0.10"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 5000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM4v2PI 1.2.0.10"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"ComboAM4v2PI 1.2.0.10"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 3000 Series Desktop Processors","versions":[{"status":"unaffected","version":"ComboAM4PI 1.0.0.10"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"PhoenixPI-FP8-FP7_1.2.0.0f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"PicassoPI-FP5_1.0.1.2e"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics","versions":[{"status":"unaffected","version":"RembrandtPI-FP7_1.0.0.Bg"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ AI Max 300 Series Processors","versions":[{"status":"unaffected","version":"StrixHaloPI-FP11_1.0.0.2a"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Z1 Series Processors","versions":[{"status":"unaffected","version":"StrixKrackanPI-FP8_1.1.0.0e"},{"status":"unaffected","version":"PhoenixPI-FP8-FP7_1.2.0.0f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Z2 Series Processors Extreme","versions":[{"status":"unaffected","version":"StrixKrackanPI-FP8_1.1.0.0e"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Z2 Series Processors","versions":[{"status":"unaffected","version":"PhoenixPI-FP8-FP7_1.2.0.0f"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Z2 Series Processors Go","versions":[{"status":"unaffected","version":"RembrandtPI-FP7_1.0.0.Bg"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors","versions":[{"status":"unaffected","version":"ShimadaPeakPI-SP6 1.0.0.1c"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ 7000  Processors","versions":[{"status":"unaffected","version":"ShimadaPeakPI-SP6 1.0.0.1c"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ 9000 Processors","versions":[{"status":"unaffected","version":"ShimadaPeakPI-SP6 1.0.0.1c"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Threadripper™ PRO 9000 WX-Series Processors","versions":[{"status":"unaffected","version":"ShimadaPeakPI-SP6 1.0.0.1c"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ AI 300 Series Processors","versions":[{"status":"unaffected","version":"StrixKrackanPI-FP8_1.1.0.2d"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 7000 Series Desktop Processors (formerly codenamed \"Raphael\")","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.8.0"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 8000 Series Desktop Processors (formerly codenamed \"Phoenix\")","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.8.0"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ 9000 Series Desktop Processors (formerly codenamed \"Granite Ridge\")","versions":[{"status":"unaffected","version":"ComboAM5PI 1.2.8.0"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 7003 Series Processors","versions":[{"status":"unaffected","version":"EmbMilanPI-SP3 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed \"Genoa\")","versions":[{"status":"unaffected","version":"EmbGenoaPI-SP5 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 7002 Series Processors","versions":[{"status":"unaffected","version":"EmbRomePI-SP3 1.0.0.F"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded R1000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedPI-FP5 1213"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded R2000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedR2KPI-FP5 1008"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed \"Raven Ridge\")","versions":[{"status":"unaffected","version":"EmbeddedPI-FP5 1213"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded 5000 Series Processors","versions":[{"status":"unaffected","version":"EmbAM4PI 1.0.0.9"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded V2000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedPI-FP6_1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded V3000 Series Processors","versions":[{"status":"unaffected","version":"Embedded-PI_FP7r2 1012"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 9004 Series Processors (formerly codenamed \"Bergamo\")","versions":[{"status":"unaffected","version":"EmbGenoaPI-SP5 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 8004 Series Processors","versions":[{"status":"unaffected","version":"EmbGenoaPI-SP5 1.0.0.D"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded 9000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedAM5PI 1.0.0.5"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded 8000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedPhoenixPI-FP7r2_1.0.0.4"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD Ryzen™ Embedded 7000 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedAM5PI 1.0.0.7"}],"defaultStatus":"affected"},{"vendor":"AMD","product":"AMD EPYC™ Embedded 9005 Series Processors","versions":[{"status":"unaffected","version":"EmbeddedTurinPI_SP5_1004"}],"defaultStatus":"affected"}],"descriptions":[{"lang":"en","value":"Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.","supportingMedia":[{"type":"text/html","base64":false,"value":"<div>Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.</div>"}]}],"references":[{"url":"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7054.html"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV4_0":{"attackVector":"LOCAL","attackComplexity":"HIGH","attackRequirements":"NONE","privilegesRequired":"HIGH","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","subConfidentialityImpact":"NONE","vulnIntegrityImpact":"HIGH","subIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subAvailabilityImpact":"NONE","exploitMaturity":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED","version":"4.0","baseSeverity":"HIGH","baseScore":7.1,"vectorString":"CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}],"source":{"discovery":"UNKNOWN"},"x_generator":{"engine":"AMD PSIRT Automation 1.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-04-16T00:00:00+00:00","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3","id":"CVE-2025-54502"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-04-17T03:55:16.268Z"}},{"affected":[{"cpes":["cpe:/o:redhat:enterprise_linux:10"],"defaultStatus":"unaffected","product":"Red Hat Enterprise Linux 10","vendor":"Red Hat"},{"cpes":["cpe:/o:redhat:enterprise_linux:6"],"defaultStatus":"unaffected","product":"Red Hat Enterprise Linux 6","vendor":"Red Hat"},{"cpes":["cpe:/o:redhat:enterprise_linux:7"],"defaultStatus":"unaffected","product":"Red Hat Enterprise Linux 7","vendor":"Red Hat"},{"cpes":["cpe:/o:redhat:enterprise_linux:8"],"defaultStatus":"unaffected","product":"Red Hat Enterprise Linux 8","vendor":"Red Hat"},{"cpes":["cpe:/o:redhat:enterprise_linux:9"],"defaultStatus":"unaffected","product":"Red Hat Enterprise Linux 9","vendor":"Red Hat"}],"datePublic":"2026-04-16T18:46:13.377Z","descriptions":[{"lang":"en","value":"A flaw was found in the AMD Platform Configuration Blob (APCB) SMM driver. A privileged attacker with local access (Ring 0) can exploit an incorrect use of a boot service. This vulnerability may allow the attacker to achieve privilege escalation, potentially leading to arbitrary code execution."}],"metrics":[{"other":{"content":{"namespace":"https://access.redhat.com/security/updates/classification/","value":"Important"},"type":"Red Hat severity rating"}},{"cvssV3_1":{"attackComplexity":"HIGH","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"HIGH","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H","version":"3.1"},"format":"CVSS"}],"problemTypes":[{"descriptions":[{"cweId":"CWE-648","description":"Incorrect Use of Privileged APIs","lang":"en","type":"CWE"}]}],"references":[{"tags":["vdb-entry","x_refsource_REDHAT"],"url":"https://access.redhat.com/security/cve/CVE-2025-54502"},{"name":"RHBZ#2459023","tags":["issue-tracking","x_refsource_REDHAT"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2459023"},{"tags":["x_sadp-csaf-vex"],"url":"https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-54502.json"}],"timeline":[{"lang":"en","time":"2026-04-16T20:00:50.766Z","value":"Reported to Red Hat."},{"lang":"en","time":"2026-04-16T18:46:13.377Z","value":"Made public."}],"title":"AMD Platform Configuration Blob: APCB SMM driver: kernel: linux-firmware: AMD APCB SMM driver: Arbitrary Code Execution via incorrect boot service use","x_adpType":"supplier","x_generator":{"engine":"sadp-cli 1.0.0"},"providerMetadata":{"orgId":"0b0ca135-0b70-47e7-9f44-1890c2a1c46c","shortName":"redhat-SADP","dateUpdated":"2026-06-30T12:07:18.620Z"}}]}}