Description
Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.
Published: 2026-04-16
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An incorrect use of the boot service in the AMD Platform Configuration Blob SMM driver can allow a privileged attacker with local Ring 0 access to elevate privileges and potentially execute arbitrary code. The flaw is a local elevation weakness that can compromise system integrity if an attacker can subvert privileged local components.

Affected Systems

The flaw affects a broad range of AMD processors, including AMD Athlon 3000 Series Mobile Processors with Radeon Graphics, AMD EPYC 4004/7002/7003/8004/9004/9005/9V64H Series Processors, AMD EPYC Embedded 7002/7003/8004/9004 Series Processors, AMD Instinct MI300A Series Processors, AMD Ryzen 3000/4000/5000/6000/7000/7020/7030/7035/7040/7045/8000/8040/9000/9000HX Series Desktop and Mobile Processors, AMD Ryzen AI 300/300 Max Series Processors, AMD Ryzen Embedded 5000/7000/8000/9000/R1000/R2000/V1000/V2000/V3000 Series Processors, AMD Ryzen Threadripper 7000/9000 and AMD Ryzen Threadripper PRO 3000 WX/PRO 5000 WX/PRO 7000 WX/PRO 9000 WX Series Processors, and AMD Ryzen Z1/Z2/Z2 Extreme/Z2 Go Series Processors.

Risk and Exploitability

The CVSS score of 7.1 denotes high severity, but exploitation requires local privileged (Ring 0) conditions and the EPSS score of < 1% (approximately 0.0002) indicates a very low probability of exploitation. The vulnerability is not listed in the CISA KEV catalog, suggesting no publicly disclosed exploit at present. Nonetheless, an attacker with local privilege can use the misused boot service within SMM to obtain arbitrary code execution.

Generated by OpenCVE AI on May 7, 2026 at 02:05 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the firmware patch or latest firmware update released by AMD as detailed in the AMD Security Bulletin AMDSB‑7054.
  • Restrict local privileged access to only the users or processes that require it, following the principle of least privilege.
  • Enable detailed system logging for SMM activities and regularly review the logs for anomalous behavior indicative of privilege escalation attempts.

Generated by OpenCVE AI on May 7, 2026 at 02:05 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title AMD APCB SMM Driver Privilege Escalation via Incorrect Boot Service Use AMD Platform Configuration Blob: APCB SMM driver: kernel: linux-firmware: AMD APCB SMM driver: Arbitrary Code Execution via incorrect boot service use
Weaknesses CWE-648
References
Metrics threat_severity

None

 cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H'}

threat_severity

Important

Tue, 28 Apr 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Amd
Amd athlon 3000 Series Mobile Processors With Radeon Graphics
Amd epyc 4004 Series Processors
Amd epyc 7002 Series Processors
Amd epyc 7003 Series Processors
Amd epyc 8004 Series Processors
Amd epyc 9004 Series Processors
Amd epyc 9005 Series Processors
Amd epyc 9v64h Processor
Amd epyc Embedded 7002 Series Processors
Amd epyc Embedded 7003 Series Processors
Amd epyc Embedded 8004 Series Processors
Amd epyc Embedded 9004 Series Processors
Amd epyc Embedded 9005 Series Processors
Amd instinct Mi300a Series Processors
Amd ryzen 3000 Series Desktop Processors
Amd ryzen 3000 Series Mobile Processors With Radeon Graphics
Amd ryzen 4000 Series Desktop Processors
Amd ryzen 4000 Series Mobile Processors With Radeon Graphics
Amd ryzen 5000 Series Desktop Processors
Amd ryzen 5000 Series Desktop Processors With Radeon Graphics
Amd ryzen 5000 Series Mobile Processors With Radeon Graphics
Amd ryzen 6000 Series Processors With Radeon Graphics
Amd ryzen 7000 Series Desktop Processors
Amd ryzen 7020 Series Processors With Radeon Graphics
Amd ryzen 7030 Series Mobile Processors With Radeon Graphics
Amd ryzen 7035 Series Processors With Radeon Graphics
Amd ryzen 7040 Series Mobile Processors With Radeon Graphics
Amd ryzen 7045 Series Mobile Processors With Radeon Graphics
Amd ryzen 8000 Series Desktop Processors
Amd ryzen 8040 Series Mobile Processors With Radeon Graphics
Amd ryzen 9000 Series Desktop Processors
Amd ryzen 9000hx Series Processors
Amd ryzen Ai Max 300 Series Processors
Amd ryzen Embedded 5000 Series Processors
Amd ryzen Embedded 7000 Series Processors
Amd ryzen Embedded 8000 Series Processors
Amd ryzen Embedded 9000 Series Processors
Amd ryzen Embedded R1000 Series Processors
Amd ryzen Embedded R2000 Series Processors
Amd ryzen Embedded V1000 Series Processors
Amd ryzen Embedded V2000 Series Processors
Amd ryzen Embedded V3000 Series Processors
Amd ryzen Threadripper 7000 Processors
Amd ryzen Threadripper 9000 Processors
Amd ryzen Threadripper Pro 3000 Wx-series Processors
Amd ryzen Threadripper Pro 5000 Wx-series Processors
Amd ryzen Threadripper Pro 7000 Wx-series Processors
Amd ryzen Threadripper Pro 9000 Wx-series Processors
Amd ryzen Z1 Series Processors
Amd ryzen Z2 Series Processors
Amd ryzen Z2 Series Processors Extreme
Amd ryzen Z2 Series Processors Go
Vendors & Products Amd
Amd athlon 3000 Series Mobile Processors With Radeon Graphics
Amd epyc 4004 Series Processors
Amd epyc 7002 Series Processors
Amd epyc 7003 Series Processors
Amd epyc 8004 Series Processors
Amd epyc 9004 Series Processors
Amd epyc 9005 Series Processors
Amd epyc 9v64h Processor
Amd epyc Embedded 7002 Series Processors
Amd epyc Embedded 7003 Series Processors
Amd epyc Embedded 8004 Series Processors
Amd epyc Embedded 9004 Series Processors
Amd epyc Embedded 9005 Series Processors
Amd instinct Mi300a Series Processors
Amd ryzen 3000 Series Desktop Processors
Amd ryzen 3000 Series Mobile Processors With Radeon Graphics
Amd ryzen 4000 Series Desktop Processors
Amd ryzen 4000 Series Mobile Processors With Radeon Graphics
Amd ryzen 5000 Series Desktop Processors
Amd ryzen 5000 Series Desktop Processors With Radeon Graphics
Amd ryzen 5000 Series Mobile Processors With Radeon Graphics
Amd ryzen 6000 Series Processors With Radeon Graphics
Amd ryzen 7000 Series Desktop Processors
Amd ryzen 7020 Series Processors With Radeon Graphics
Amd ryzen 7030 Series Mobile Processors With Radeon Graphics
Amd ryzen 7035 Series Processors With Radeon Graphics
Amd ryzen 7040 Series Mobile Processors With Radeon Graphics
Amd ryzen 7045 Series Mobile Processors With Radeon Graphics
Amd ryzen 8000 Series Desktop Processors
Amd ryzen 8040 Series Mobile Processors With Radeon Graphics
Amd ryzen 9000 Series Desktop Processors
Amd ryzen 9000hx Series Processors
Amd ryzen Ai Max 300 Series Processors
Amd ryzen Embedded 5000 Series Processors
Amd ryzen Embedded 7000 Series Processors
Amd ryzen Embedded 8000 Series Processors
Amd ryzen Embedded 9000 Series Processors
Amd ryzen Embedded R1000 Series Processors
Amd ryzen Embedded R2000 Series Processors
Amd ryzen Embedded V1000 Series Processors
Amd ryzen Embedded V2000 Series Processors
Amd ryzen Embedded V3000 Series Processors
Amd ryzen Threadripper 7000 Processors
Amd ryzen Threadripper 9000 Processors
Amd ryzen Threadripper Pro 3000 Wx-series Processors
Amd ryzen Threadripper Pro 5000 Wx-series Processors
Amd ryzen Threadripper Pro 7000 Wx-series Processors
Amd ryzen Threadripper Pro 9000 Wx-series Processors
Amd ryzen Z1 Series Processors
Amd ryzen Z2 Series Processors
Amd ryzen Z2 Series Processors Extreme
Amd ryzen Z2 Series Processors Go

Fri, 17 Apr 2026 03:45:00 +0000

Type Values Removed Values Added
Title AMD APCB SMM Driver Privilege Escalation via Incorrect Boot Service Use

Thu, 16 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 16 Apr 2026 19:30:00 +0000

Type Values Removed Values Added
Description Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.
Weaknesses CWE-668
References
Metrics cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Amd Athlon 3000 Series Mobile Processors With Radeon Graphics Epyc 4004 Series Processors Epyc 7002 Series Processors Epyc 7003 Series Processors Epyc 8004 Series Processors Epyc 9004 Series Processors Epyc 9005 Series Processors Epyc 9v64h Processor Epyc Embedded 7002 Series Processors Epyc Embedded 7003 Series Processors Epyc Embedded 8004 Series Processors Epyc Embedded 9004 Series Processors Epyc Embedded 9005 Series Processors Instinct Mi300a Series Processors Ryzen 3000 Series Desktop Processors Ryzen 3000 Series Mobile Processors With Radeon Graphics Ryzen 4000 Series Desktop Processors Ryzen 4000 Series Mobile Processors With Radeon Graphics Ryzen 5000 Series Desktop Processors Ryzen 5000 Series Desktop Processors With Radeon Graphics Ryzen 5000 Series Mobile Processors With Radeon Graphics Ryzen 6000 Series Processors With Radeon Graphics Ryzen 7000 Series Desktop Processors Ryzen 7020 Series Processors With Radeon Graphics Ryzen 7030 Series Mobile Processors With Radeon Graphics Ryzen 7035 Series Processors With Radeon Graphics Ryzen 7040 Series Mobile Processors With Radeon Graphics Ryzen 7045 Series Mobile Processors With Radeon Graphics Ryzen 8000 Series Desktop Processors Ryzen 8040 Series Mobile Processors With Radeon Graphics Ryzen 9000 Series Desktop Processors Ryzen 9000hx Series Processors Ryzen Ai Max 300 Series Processors Ryzen Embedded 5000 Series Processors Ryzen Embedded 7000 Series Processors Ryzen Embedded 8000 Series Processors Ryzen Embedded 9000 Series Processors Ryzen Embedded R1000 Series Processors Ryzen Embedded R2000 Series Processors Ryzen Embedded V1000 Series Processors Ryzen Embedded V2000 Series Processors Ryzen Embedded V3000 Series Processors Ryzen Threadripper 7000 Processors Ryzen Threadripper 9000 Processors Ryzen Threadripper Pro 3000 Wx-series Processors Ryzen Threadripper Pro 5000 Wx-series Processors Ryzen Threadripper Pro 7000 Wx-series Processors Ryzen Threadripper Pro 9000 Wx-series Processors Ryzen Z1 Series Processors Ryzen Z2 Series Processors Ryzen Z2 Series Processors Extreme Ryzen Z2 Series Processors Go
cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published:

Updated: 2026-04-17T03:55:16.268Z

Reserved: 2025-07-23T15:01:50.731Z

Link: CVE-2025-54502

cve-icon Vulnrichment

Updated: 2026-04-16T19:21:50.149Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-16T20:16:37.393

Modified: 2026-04-17T15:14:05.510

Link: CVE-2025-54502

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-16T18:46:13Z

Links: CVE-2025-54502 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T02:15:18Z

Weaknesses