Skip to main content

CWE-1233

Security-Sensitive Hardware Controls with Missing Lock Bit Protection

4 CVEs Avg CVSS 5.6 MITRE
0
CRITICAL
1
HIGH
2
MEDIUM
1
LOW
2
POC
0
KEV

Monthly

CVE-2025-61972 HIGH This Week

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code execution in AMD Secure Processor (ASP) and loss of the SEV-SNP guest's confidentiality and integrity.

RCE Amd
NVD VulDB
CVSS 4.0
8.5
EPSS
0.0%
CVE-2025-61971 MEDIUM This Month

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.

Information Disclosure Red Hat Suse Amd Epyc 7003 Series Processors Amd Epyc 9004 Series Processors +7
NVD VulDB
CVSS 4.0
5.9
EPSS
0.0%
CVE-2025-25735 MEDIUM POC Monitor

Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to lack SPI Protected Range Registers (PRRs), allowing attackers with. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ris 9160 Firmware Ris 9260 Firmware
NVD
CVSS 3.1
4.6
EPSS
0.0%
CVE-2025-25733 LOW POC Monitor

Incorrect access control in the SPI Flash Chip of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows physically proximate attackers. Rated low severity (CVSS 3.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ris 9160 Firmware Ris 9260 Firmware
NVD
CVSS 3.1
3.5
EPSS
0.0%
EPSS 0% CVSS 8.5
HIGH This Week

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code execution in AMD Secure Processor (ASP) and loss of the SEV-SNP guest's confidentiality and integrity.

RCE Amd
NVD VulDB
EPSS 0% CVSS 5.9
MEDIUM This Month

Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity.

Information Disclosure Red Hat Suse +9
NVD VulDB
EPSS 0% CVSS 4.6
MEDIUM POC Monitor

Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to lack SPI Protected Range Registers (PRRs), allowing attackers with. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ris 9160 Firmware Ris 9260 Firmware
NVD
EPSS 0% CVSS 3.5
LOW POC Monitor

Incorrect access control in the SPI Flash Chip of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows physically proximate attackers. Rated low severity (CVSS 3.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ris 9160 Firmware Ris 9260 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy