Fluid Attacks Database

Description

A flaw was found in the AMD Platform Configuration Blob (APCB) SMM driver. A privileged attacker with local access (Ring 0) can exploit an incorrect use of a boot service. This vulnerability may allow the attacker to achieve privilege escalation, potentially leading to arbitrary code execution.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package
rpm rhel8	kernel
rpm rhel7	kernel-rt
rpm rhel8	kernel-rt
rpm rhel9	kernel-rt

Aliases

1. CVE-2025-545022. NVD-2025-545023. OSV-2025-54502

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.