216.73.216.170

CVE-2025-9612

· Published 09/12/2025 19:15 · Modified 12/12/2025 15:19

Labels: CVE-2025-9612 2025-12-09CVE-2025-9612[email protected]

Essential information

Published
09/12/2025 19:15
Modified
12/12/2025 15:19
Author
Creator
CVSS
5.1 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CVSS metrics

Description

An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification, where insufficient guidance on Transaction Layer Packet (TLP) ordering and tag uniqueness may allow encrypted packets to be replayed or reordered without detection. This can enable local or physical attackers on the PCIe bus to violate data integrity protections.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References