Security Advisory

CVE-2025-14304

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-17 03:23:24

Last updated 2025-12-17 21:30:16

Assigner twcert

State PUBLISHED

Description

Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.

← Browse all CVEs View on cve.org ↗