Improper Access Control in JTAG-AXI Interaction Exposes XCD Registers
CVE-2025-0040 Published on May 15, 2026

Improper access control between the Joint Test Action Group (JTAG) and Advanced Extensible Interface (AXI) could allow an attacker with physical access to read or overwrite the contents of cross-chip debug (XCD) registers potentially resulting in loss of data integrity or confidentiality.

NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2025-0040 has been classified to as an Authorization vulnerability or weakness.

Affected Versions

AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics:

Version PhoenixPI-FP8-FP7_1.2.0.B is unaffected.

AMD Ryzen™ 8000 Series Desktop Processors:

Version ComboAM5PI 1.2.0.3d is unaffected.
Version ComboAM5PI 1.1.0.3d is unaffected.

AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics:

Version PhoenixPI-FP8-FP7_1.2.0.B is unaffected.

AMD Ryzen™ Embedded 8000 Series Processors:

Version EmbeddedPhoenixPI-FP7r2_1.0.0.2 is unaffected.

Improper Access Control in JTAG-AXI Interaction Exposes XCD RegistersCVE-2025-0040 Published on May 15, 2026

Weakness Type

What is an Authorization Vulnerability?

Affected Versions

Improper Access Control in JTAG-AXI Interaction Exposes XCD Registers
CVE-2025-0040 Published on May 15, 2026