AMD fixes major Ryzen 7000 and Ryzen 9000 vulnerability

Important BIOS security updates released for the latest AMD Ryzen CPUs (Image source: AMD)

AMD motherboard manufacturers have begun distributing new BIOS updates to fix a security flaw affecting a wide range of Ryzen processors. The vulnerability, located in the TPM 2.0 code, could allow hackers with ordinary user privileges to access sensitive information or disrupt TPM. The fix, delivered through AGESA 1.2.0.3e firmware, is now available for AM5-based systems.

Andrew Sozinov, Published 06/15/2025 🇪🇸 🇵🇹 ...

Motherboard manufacturers, including Asus and MSI, are rolling out new BIOS updates that fix an important security flaw discovered in AMD's processors. The issue involves the Trusted Platform Module (TPM) and is officially labeled CVE-2025-2884. This flaw allows attackers with basic user privileges to potentially access sensitive data or disrupt the TPM itself. Although the vulnerability is considered medium risk, it is notable because it's easier to exploit than most similar issues.

The security flaw originates from a coding error in the TPM 2.0 software, specifically within the CryptHmacSign() function. This issue allows regular user-level applications to read beyond the intended data buffer, potentially exposing up to 65,535 bytes of sensitive information. Consequently, attackers could leverage this flaw either to access confidential data stored within the TPM or to cause the module to fail altogether, creating a denial-of-service scenario. Although the vulnerability has been assigned a medium severity rating (CVSS score of 6.6), it poses a notable risk due to its ease of exploitation—it doesn't require elevated kernel-level permissions, only standard user access.

The flaw affects many Ryzen processors, including desktop CPUs from Athlon 3000 "Dali" and Ryzen 3000 "Matisse" through Ryzen 9000 "Granite Ridge." Mobile chips from Ryzen 3000 Mobile "Picasso" up to Ryzen AI 300 "Strix Point," as well as Threadripper workstation CPUs from Threadripper 3000 "Castle Peak" to Threadripper 7000 "Storm Peak," are also impacted. While previous updates have already addressed the vulnerability on older AMD CPU generations, the AGESA 1.2.0.3e firmware specifically targets AM5-based platforms.

It is important to note that these BIOS updates are irreversible on certain motherboards, including those from Asus, meaning users cannot roll back to previous firmware versions once installed.

Besides fixing the security issue, the update also prepares motherboards for upcoming Ryzen processors, likely from the anticipated Ryzen 9000F series. Additionally, this update improves compatibility and performance for high-capacity memory setups, particularly those using 4×64 GB DRAM modules at speeds between 6000 and 6400 MT/s.

AMD urges users to verify the availability of the BIOS update through their motherboard manufacturer's support page and install it as soon as possible.

Source(s)

Asus, MSI via VideoCardz

Phoenix exploits very particular weakneses discovered in the Rowhammer mitigation. An artistic representation of a phoenix pictured. (Image Source: TechPowerup)

Researchers discover critical DDR5 RAM vulnerability codenamed Phoenix that avoids Rowhammer mitigations 09/17/2025

AMD has two new Ryzen 9000 X3D CPUs lined up. Retail box of a 9000X3D CPU pictured (image source: AMD)

Upcoming AMD Ryzen 9000 CPU with dual 3D V-cache highlighted by new leak 08/04/2025

AMD CEO Lisa Su showcases a Ryzen processor. Her 2025 pay package has been raised to $33 million. (Image source: AMD)

AMD boosts CEO Lisa Su’s paycheck to $33M — still below Nvidia’s Huang 07/03/2025

Intel Core Ultra series CPU stock image. (Image source: Intel)

Intel reportedly planning higher cache SKUs with Nova Lake lineup like AMD's X3D chips 06/24/2025

The Ryzen 5 9500X3D has surfaced on AMD's website. Pictured - a Ryzen 5 series retail box (image source: AMD)

Ryzen 5 9600X3D spotted online alongside Ryzen 5 9600 and new Ryzen Pro CPUs 06/20/2025

New 3D chip fabrication process integrates GaN transistors into silicon wafers (Image source: MIT researchers)

3D chips: Smartphones might make a big leap in performance as MIT researchers unveil new tech 06/20/2025

High-end/flagship AMD RX 7000 GPUs were offered with a "Reference Design" unlike the latest RX 9000 cards. (Image source: AMD, Unsplash, edited)

Potentially revolutionary next-gen AMD RDNA 5 GPUs to pack HDMI 2.2 but not with full bandwidth 06/19/2025

The Ryzen 5 5500X3D has been listed on AMDs website (image source: AMD)

Ryzen 5 5500X3D stealthily unveiled as AMD's newest Zen 3 desktop offering 06/13/2025

AMD has added two new models to the Ryzen Z2 series (image source: AMD)

AMD expands handheld gaming chip portfolio with two new additions 06/08/2025

XMG Neo 16 A25 (image source: Notebookcheck)

Intel is beaten - AMD's Ryzen 9 9955HX3D with 3D V-Cache is the best choice for gaming 05/30/2025

ASRock finally addresses AMD Ryzen 9000X3D failures, but questions remain 05/29/2025

AMD Ryzen Threadripper Pro 9995WX features 12 compute units on either side of the I/O side. (Image Source: AMD)

AMD launches Ryzen Threadripper 9000 Shimada Peak series led by the 96C/192T 350 W Ryzen Threadripper Pro 9995WX 05/21/2025

AMD has officially shown off the Radeon Rx 9060 XT GPU at Computex 2025 (image source: AMD)

AMD Radeon RX 9060 XT official with up to 16 GB VRAM and affordable price tag 05/21/2025

AMD Gogron Point is tipped to arrive as a Strix Point refresh (image source: AMD)

AMD Ryzen AI 400 Gorgon Point laptop CPUs spotted online 05/20/2025

The Ryzen 7 9800X3D is currently the fastest gaming CPU on the market. (Image source: Notebookcheck, Unsplash, edited)

Revolutionary AMD Zen 7 3D Core leaks with mandatory cache chiplets for potentially insane gaming performance 05/14/2025

ASRock has released BIOS update version 3.20 Beta to address boot issues with Ryzen 9800X3D CPUs. (Image source: AMD)

ASRock releases BIOS update to address Ryzen 9000 series boot issues 02/25/2025

MSI has launched a new BIOS update for its X670 motherboards (image source: AMD)

AMD Ryzen 7 9700X gets much-needed TDP boost via BIOS update, but only for MSI motherboards 08/28/2024

AMD Phoenix APUs expected to launch for AM5 motherboards soon.

Ryzen 7000G launch imminent as latest AGESA update adds AM5 desktop motherboard support for AMD Phoenix APUs 10/05/2023

DDR5-8200 is now achievable on AMD's AM5 mobos. (Image Source: G.Skill)

Latest AGESA 1.0.0.7B microcode enables DDR5-8000+ support for AMD's AM5 motherboards 07/19/2023

The affected AMD Ryzen 7 7800X3D and Asus X670 parts due to an apparent spike in SoC voltage. (Image Source: u/Speedrookie on Reddit)

AMD seeds new AGESA to mitigate Ryzen 7000 burnout concerns, confirms EXPO and PBO functionality will not be impacted 04/27/2023

AMD's new "powerhouse" could pose some problems for Intel's Raptor Lake. (Image Source: thefilibusterblog)

AMD's Ryzen 9 7950X shows improved performance with new BIOS version, crushes competition in SiSoft Sandra review 09/21/2022

Loading Comments

Comment on this article

Splay Max: 35-inch portable monitor...

Huawei hits 100 million HarmonyOS s...

Andrew Sozinow - News Editor - 54 articles published on Notebookcheck since 2024

I’ve been fascinated by computers, electronics and modern technology since childhood. I started writing IT-news at high school and have been doing it continuously for more than 10 years. During this time, I have worked for many media outlets, and now I am a news editor at 3DNews. Sometimes I also write smartphone reviews. In July 2024, I decided to try my hand at writing news on Notebookcheck. When I'm not working, I like to play videogames, do puzzles, and travel.

Please share our article, every link counts!