Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.
CVSS
No CVSS.
References
Configurations
No configuration.
History
10 Feb 2026, 20:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-02-10 20:16
Updated : 2026-02-10 21:51
NVD link : CVE-2025-48514
Mitre link : CVE-2025-48514
CVE.ORG link : CVE-2025-48514
JSON object : View
Products Affected
No product.
CWE
CWE-1220
Insufficient Granularity of Access Control