Saturday , March 29 2025
SMM

AMD Patches High-Severity SMM Vulns Affecting EPYC and Ryzen Processors

infosecbulletin Sunday , February 16 2025 Alert, Vulnerabilities

AMD has released security patches for two high-severity vulnerabilities in its System Management Mode (SMM). If exploited, these could let attackers execute arbitrary code and compromise system integrity.

CVE-2024-0179 and CVE-2024-21925 are high-severity vulnerabilities with a CVSS score of 8.2. AMD reported that these flaws, identified by Quarkslab, impact several generations of AMD EPYC and Ryzen processors.

FBI investigating cyberattack at Oracle, Bloomberg News reports

By infosecbulletin / Saturday , March 29 2025
The Federal Bureau of Investigation (FBI) is probing the cyberattack at Oracle (ORCL.N), opens new tab that has led to...
Read More
FBI investigating cyberattack at Oracle, Bloomberg News reports

OpenAI Offering $100K Bounties for Critical Vulns

By infosecbulletin / Thursday , March 27 2025
OpenAI has increased its maximum bug bounty payout to $100,000, up from $20,000, to encourage the discovery of critical vulnerabilities...
Read More
OpenAI Offering $100K Bounties for Critical Vulns

Splunk Alert User RCE and Data Leak Vulns

By infosecbulletin / Thursday , March 27 2025
Splunk has released a security advisory about critical vulnerabilities in Splunk Enterprise and Splunk Cloud Platform. These issues could lead...
Read More
Splunk Alert User RCE and Data Leak Vulns

CIRT alert Situational Awareness for Eid Holidays

By infosecbulletin / Thursday , March 27 2025
As the Eid holidays near, cybercriminals may try to take advantage of weakened security during this time. The CTI unit...
Read More
CIRT alert Situational Awareness for Eid Holidays

Cyberattack on Malaysian airports: PM rejected $10 million ransom

By infosecbulletin / Wednesday , March 26 2025
Operations at Kuala Lumpur International Airport (KLIA) were unaffected by a cyber attack in which hackers demanded US$10 million (S$13.4...
Read More
Cyberattack on Malaysian airports: PM rejected $10 million ransom

Micropatches released for Windows zero-day leaking NTLM hashes

By infosecbulletin / Wednesday , March 26 2025
Unofficial patches are available for a new Windows zero-day vulnerability that allows remote attackers to steal NTLM credentials by deceiving...
Read More
Micropatches released for Windows zero-day leaking NTLM hashes

VMware Patches Authentication Bypass Flaw in Windows Tool

By infosecbulletin / Wednesday , March 26 2025
On Tuesday, VMware issued an urgent fix for a security flaw in its VMware Tools for Windows. CVE-2025-22230 allows a...
Read More
VMware Patches Authentication Bypass Flaw in Windows Tool

IngressNightmare
Over 40% of cloud environments are vulnerable to RCE

By infosecbulletin / Tuesday , March 25 2025
Kubernetes users of the Ingress NGINX Controller are advised to fix four newly found remote code execution ( RCE) vulnerabilities,...
Read More
IngressNightmare Over 40% of cloud environments are vulnerable to RCE

(CVE-2025-29927)
Urgently Patch Your Next.js for Authorization Bypass

By infosecbulletin / Tuesday , March 25 2025
Next.js, a widely used React framework for building full-stack web applications, has fixed a serious security vulnerability. Used by many...
Read More
(CVE-2025-29927) Urgently Patch Your Next.js for Authorization Bypass

Oracle refutes breach after hacker claims 6 million data theft

By infosecbulletin / Sunday , March 23 2025
A hacker known as “rose87168” claims to have stolen six million records from Oracle Cloud servers. The stolen data includes...
Read More
Oracle refutes breach after hacker claims 6 million data theft

CVE-2024-0179 is a vulnerability in the AmdCpmDisplayFeatureSMM UEFI module that allows locally authenticated attackers to overwrite SMRAM, which may lead to arbitrary code execution, according to AMD.

CVE-2024-21925 arises from inadequate input validation in the AmdPspP2CmboxV2 UEFI module, potentially allowing an attacker to overwrite SMRAM and execute arbitrary code.
The vulnerabilities target System Management RAM (SMRAM), a secure memory area for SMM handlers, aimed at preventing unauthorized access. Attackers with certain privileges could gain higher access to run malicious code at the highest system privilege level (ring-0).

The vulnerabilities affect multiple processor families, including:

1st to 4th Gen AMD EPYC processors (Naples, Rome, Milan, Genoa)
AMD Ryzen 5000/7000 series desktop and mobile processors
AMD Ryzen Threadripper PRO and High-End Desktop (HEDT) processors
AMD Instinct MI300A Data Center GPUs

AMD requires firmware updates to the Platform Initialization (PI) firmware to address the issue. The specific firmware versions for affected processors are Naples PI 1.0.0.N (2024-09-17), Rome PI 1.0.0.K (2024-09-05), and Milan PI 1.0.0.E (2024-09-05).

AMD advises users to update their firmware through their OEM vendors to address security risks. Patches to mitigate vulnerabilities are included in BIOS updates.

Lazarus Group Unleashes New Malware Against Developers Worldwide

Check Also

VMware

VMware Patches Authentication Bypass Flaw in Windows Tool

On Tuesday, VMware issued an urgent fix for a security flaw in its VMware Tools …

Leave a Reply

Your email address will not be published. Required fields are marked *

Mail: [email protected]
© Copyright 2025, All Rights Reserved InfoSecBulletin