AMD SEV Firmware UAF Allows Hypervisor Guest Activation Attack
CVE-2025-0031 Published on February 10, 2026

A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a different socket than the migration agent potentially resulting in loss of integrity.

NVD

Weakness Type

What is a Dangling pointer Vulnerability?

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

CVE-2025-0031 has been classified to as a Dangling pointer vulnerability or weakness.

Affected Versions

AMD EPYC™ 9004 Series Processors:

Version GenoaPI 1.0.0.G is unaffected.

AMD EPYC™ 7003 Series Processors:

Version MilanPI 1.0.0.H is unaffected.

AMD EPYC™ 9005 Series Processors:

Version TurinPI 1.0.0.5 is unaffected.

AMD EPYC™ 8004 Series Processors:

Version GenoaPI 1.0.0.G is unaffected.

AMD EPYC™ Embedded 7003 Series Processors:

Version EmbMilanPI-SP3 v9 1.0.0.C is unaffected.

AMD EPYC™ Embedded 9003 Series Processors:

Version EmbGenoaPI-SP5 1.0.0.B is unaffected.

AMD EPYC™ Embedded 9005 Series Processors:

Version EmbTurinPI-SP5_1.0.0.1 is unaffected.

AMD EPYC™ Embedded 9004 Series Processors:

Version EmbGenoaPI-SP5 1.0.0.B is unaffected.

AMD EPYC™ Embedded 8004 Series Processors:

Version EmbGenoaPI-SP5 1.0.0.B is unaffected.

Exploit Probability

EPSS

0.02%

Percentile

4.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

AMD SEV Firmware UAF Allows Hypervisor Guest Activation AttackCVE-2025-0031 Published on February 10, 2026

Weakness Type

What is a Dangling pointer Vulnerability?

Affected Versions

Exploit Probability

AMD SEV Firmware UAF Allows Hypervisor Guest Activation Attack
CVE-2025-0031 Published on February 10, 2026