| TVN ID | TVN-202512005 |
|---|---|
| CVE ID | CVE-2025-14304 |
| CVSS | 6.8 (Medium) CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Affected Products | Intel 500/600/700/800 chipset motherboard |
| Description | Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded. |
| Solution | Please update firmware to latest version. |
| Credit | Nick Peterson, Mohamed Al-Sharifi(Riot Games) |
| Public Date | 2025-12-17 |
:::