CVE-2025-0038 - CERT CVE

  1. CVE-2025-0038

ID CVE-2025-0038
Sažetak In AMD Zynq UltraScale+ devices, the lack of address validation when executing CSU runtime services through the PMU Firmware can allow access to isolated or protected memory spaces resulting in the loss of integrity and confidentiality.
Reference
CVSS
Base: 6.6
Impact: 4.7
Exploitability:1.8
Pristup
VektorSloženostAutentikacija
LOCAL LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW HIGH
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Zadnje važnije ažuriranje 08-10-2025 - 19:38
Objavljeno 06-10-2025 - 17:16