| TVN ID | TVN-202512003 |
|---|---|
| CVE ID | CVE-2025-14302 |
| CVSS | 6.8 (Medium) CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Affected Products | Intel 600/700/800 chipset motherboard AMD 600/800/TRX50 chipset motherboard |
| Description | Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded. |
| Solution | Please update firmware to latest version. |
| Credit | Nick Peterson, Mohamed Al-Sharifi(Riot Games) |
| Public Date | 2025-12-17 |
:::