AMD RMPocalypse Flaw Breaks SEV-SNP Security

Researchers have discovered a critical vulnerability, dubbed RMPocalypse (CVE-2025-0033), affecting multiple AMD EPYC processors. The flaw exploits a race condition during the initialization of the Reverse Map Paging (RMP) table, a core component of the Secure Encrypted Virtualization (SEV-SNP) technology. This allows a malicious hypervisor to corrupt the RMP, completely bypassing the confidentiality and integrity guarantees of SEV-SNP. Successful exploitation enables attackers to tamper with isolated virtual machines, forge security attestations, and exfiltrate all secrets with a 100% success rate. In response, the chipmaker has released firmware updates to mitigate the issue and protect confidential computing environments.

Latest mentioned: 10-14

Earliest mentioned: 10-14

Sources

securityonline.info thehackernews.com

Also Read

BRONZE BUTLER Exploits LANSCOPE Zero-Day for Data Theft

In mid-2025, Secureworks CTU researchers uncovered a sophisticated cyber campaign by the BRONZE BUTLER group, exploiting a zero-day vulnerability in Motex LANSCOPE Endpoint Manager. This group, active since 2010, has a history of targeting specific organizations and government entities. The vulnerability, CVE-2025-61932, allows remote attackers to execute arbitrary commands with SYSTEM privileges. The campaign involved deploying Gokcpdoor and Havoc C2 frameworks, using legitimate tools like goddi and 7-Zip for data exfiltration. International cybersecurity authorities quickly responded, highlighting the severity of the threat.

10-31Read more →