CVE-2025-52533

Summary

Improper Access Control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality or integrity.

Affected Software

VendorProductVersion RangeStatus
AMDAMD EPYC™ 7003 Series ProcessorsMilanPI 1.0.0.Gunaffected
AMDAMD EPYC™ 7002 Series ProcessorsNo Fix Plannedaffected
AMDAMD EPYC™ 7001 Series ProcessorsNo Fix Plannedaffected
AMDAMD Ryzen™ Threadripper™ PRO 3000 WX-Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Threadripper™ PRO 5000 WX-Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Threadripper™ 7000 ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 3000 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ AI Max 300 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 2000 Mobile ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 3000 Series Desktop ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 5000 Series Desktop ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Z2 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Z2 Series Processors GoUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 7035 Series Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 6000 Series Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ AI 300 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 5000 Series Desktop Processors with Radeon™ GraphicsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 4000 Series Desktop ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Z1 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 7000 Series Desktop ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ 8000 Series Desktop ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD EPYC™ Embedded 3000 Series ProcessorsNo fix plannedaffected
AMDAMD EPYC™ Embedded 7002 Series ProcessorsNo fix plannedaffected
AMDAMD EPYC™ Embedded 7003 Series ProcessorsEmbMilanPI-SP3 v9 1.0.0.Cunaffected
AMDAMD Ryzen™ Embedded 8000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded R1000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded R2000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded 7000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded 5000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed “Picasso”)Update to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded V2000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected
AMDAMD Ryzen™ Embedded V3000 Series ProcessorsUpdate to Key Distribution Server (KDS)unaffected

Weaknesses

  • CWE-1191: CWE-1191 On-Chip Debug and Test Interface With Improper Access Control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References