AMD SEV Firmware Improper Access Control Enables Hypervisor RMP Bypass
CVE-2025-29948 Published on February 10, 2026

Improper access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity.

NVD

Weakness Type

Improper Handling of Overlap Between Protected Memory Ranges

The product allows address regions to overlap, which can result in the bypassing of intended memory protection.

Affected Versions

AMD EPYC™ 9005 Series Processors:

Version TurinPI 1.0.0.6 is unaffected.

AMD EPYC™ Embedded 9005 Series Processors:

Version EmbTurinPI-SP5_1.0.0.1 is unaffected.

Exploit Probability

EPSS

0.02%

Percentile

4.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

AMD SEV Firmware Improper Access Control Enables Hypervisor RMP BypassCVE-2025-29948 Published on February 10, 2026

Weakness Type

Improper Handling of Overlap Between Protected Memory Ranges

Affected Versions

Exploit Probability

AMD SEV Firmware Improper Access Control Enables Hypervisor RMP Bypass
CVE-2025-29948 Published on February 10, 2026