CVE-2025-29934 — Incomplete Cleanup in Amd64-microcode

CWE-459 — Incomplete Cleanup4 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.0%

top 98.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Amd64-microcode

Timeline

PublishedNov 21

Description

A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:NExploitability: 0.8 | Impact: 4.0

Affected Packages1 packages

▶debiandebian/amd64-microcode

🔴Vulnerability Details

GHSA

GHSA-4grc-qh9q-f57r: A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss↗2025-11-21

▶

OSV

CVE-2025-29934: A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss↗2025-11-21

▶

📋Vendor Advisories

Debian

CVE-2025-29934: amd64-microcode - A bug within some AMD CPUs could allow a local admin-privileged attacker to run ...↗2025

▶