Description

Insufficient input parameter sanitization in AMD Secure Processor (ASP) Boot Loader (legacy recovery mode only) could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service.

INFO

Published Date :

2026-02-10T19:46:42.763Z

Last Modified :

2026-02-10T20:40:37.898Z

Source :

AMD
AFFECTED PRODUCTS

The following products are affected by CVE-2025-29949 vulnerability.

Vendors Products
Amd
  • Ryzen 5000 Series Desktop Processors
  • Ryzen 5000 Series Desktop Processors With Radeon Graphics
  • Ryzen 5000 Series Mobile Processors With Radeon Graphics
  • Ryzen 5000 Series Processors With Radeon Graphics
  • Ryzen 6000 Series Processors With Radeon Graphics
  • Ryzen 7030 Series Mobile Processors With Radeon Graphics
  • Ryzen 7035 Series Processors With Radeon Graphics
  • Ryzen 7040 Series Mobile Processors With Radeon Graphics
  • Ryzen Embedded 8000 Series Processors
  • Ryzen Embedded R1000 Series Processors
  • Ryzen Embedded R2000 Series Processors
  • Ryzen Embedded V1000 Series Processors
  • Ryzen Embedded V2000 Series Processors
  • Ryzen Embedded V3000 Series Processors
  • Ryzen Threadripper Pro 3000wx Processors
  • Ryzen Threadripper Pro 5000 Wx-series Processors
  • Ryzen Threadripperâ„¢ 3000 Processors
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-29949.

URL Resource
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4013.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability