ГлавнаяУязвимости → CVE-2025-54502
7.5высокая

CVE-2025-54502

Описание

Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.

CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7054.htmlhttps://access.redhat.com/security/cve/CVE-2025-54502https://bugzilla.redhat.com/show_bug.cgi?id=2459023https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-54502.json