216.73.217.98

CVE-2025-48516

· Published 15/05/2026 03:16 · Modified 15/05/2026 14:10

Labels: CVE-2025-48516 2026-05-15CVE-2025-48516CWE-276[email protected]

Essential information

Published
15/05/2026 03:16
Modified
15/05/2026 14:10
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent denial of service condition or affect the integrity of the memory module.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
amd / agesa bootloader firmware cpe:2.3:a:amd:agesa_bootloader_firmware:*:*:*:*:*:*:*:*

References