CVE-2025-0033 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N
AMD	CNA	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Common Weakness Enumeration

CWE-284 - Improper Access Control
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Vulnerability Media Exposure

[ENGLISH] RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing
Chipmaker AMD has released fixes to address a security flaw dubbed RMPocalypse that could be exploited to undermine confidential computing guarantees provided by Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). The attack, per ETH Zürich researchers Benedict Schlüter and Shweta Shinde, exploits AMD's incomplete protections that make it possible to perform a single memory
Published: 2025-10-14T17:15:00+05:30
[ENGLISH] Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
Today is Microsoft's October 2025 Patch Tuesday, which includes security updates for 172 flaws, including six zero-day vulnerabilities. Get patching! [...]
Published: 2025-10-14T14:02:50-04:00
[ENGLISH] Last Windows 10 Patch Tuesday Features Six Zero Days
Microsoft has fixed over 170 CVEs in October’s Patch Tuesday, including six zero-day vulnerabilities
Published: 2025-10-15T09:45:00+00:00
[GERMAN] Patchday XXL: Microsoft schließt teils aktiv attackierte Schwachstellen
Im Zuge einer besonders ausgiebigen Patchrunde hat Microsoft unter anderem kritische Azure- und Office-Lücken behoben sowie drei aktive Exploits ausgehebelt.
Published: 2025-10-15T07:20:00+00:00
[GERMAN] Lenovo BIOS: Mehrere Schwachstellen
Ein lokaler Angreifer kann mehrere Schwachstellen in Lenovo BIOS ausnutzen, um Daten zu manipulieren, einen Denial of Service zu verursachen, Code Auszuführen und seine Rechte zu erweitern.
Published: 2025-10-14T22:00:00+00:00
[GERMAN] HPE ProLiant Server: Mehrere Schwachstellen
Ein lokaler Angreifer kann mehrere Schwachstellen in HPE ProLiant Servern ausnutzen, um Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Published: 2025-10-14T22:00:00+00:00

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3020.html