Description

Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.

INFO

Published Date :

2025-12-17T03:23:24.677Z

Last Modified :

2025-12-17T21:30:16.815Z

Source :

twcert
AFFECTED PRODUCTS

The following products are affected by CVE-2025-14304 vulnerability.

Vendors Products
Asrock
  • Intel 500
  • Intel 600
  • Intel 700
  • Intel 800
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-14304.

URL Resource
https://www.asrock.com/support/Security.asp cve-icon cve-icon
https://www.asrockind.com/zh-tw/security-center cve-icon cve-icon
https://www.twcert.org.tw/en/cp-139-10579-9205b-2.html cve-icon cve-icon
https://www.twcert.org.tw/tw/cp-132-10578-c43b4-1.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact