CVE-2025-31944 MEDIUM

CVE-2025-31944

Vendor N/A
Product TDX Module
Weakness CWE-362
Published February 10, 2026
Last update February 10, 2026

CVSS base score

5.3/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H

What the vulnerability does

01Description

Race condition for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow a denial of service. Authorized adversary with a privileged user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (none) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (low) impacts.

Key dates

02Disclosure timeline

February 10, 2026 CVE published
February 10, 2026 Record updated