CVE-2025-54509 MEDIUM

CVE-2025-54509

Weakness CWE-1262
Published June 9, 2026
Last update June 9, 2026

CVSS base score

4.0/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N

What the vulnerability does

01Description

Improper access control for register interface in the input-output memory management unit (IOMMU) could allow a privileged attacker to cause non-coherent accesses by the AMD secure processor (ASP) potentially resulting in loss of integrity.

Key dates

02Disclosure timeline

June 9, 2026 CVE published
June 9, 2026 Record updated