Amd epyc™ embedded 9004 series processors (formerly codenamed "bergamo")
This hub aggregates every CVE we track for Amd epyc™ embedded 9004 series processors (formerly codenamed "bergamo"), a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
LOW2MEDIUM2HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
3
0
1
0
0
0
2024-082026-07
Latest CVEs
The 5 most recently published vulnerabilities affecting Amd epyc™ embedded 9004 series processors (formerly codenamed "bergamo").
- CVE-2025-54502Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resul...7.5
- CVE-2025-48514Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.3.2
- CVE-2025-48509Missing Checks in certain functions related to RMP initialization can allow a local admin privileged attacker to cause misidentification of I/O memory, potentially resulting in a loss of guest memo...2.5
- CVE-2025-52536Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to downgrade firmware potentially resulting in a loss of integrity.6.0
- CVE-2025-29934A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.5.3
Product normalization is registry-driven with AI assist and human review. How it works