Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

SK Hynix DDR5 Rowhammer TRR bypass (CVE-2025-6202)

Vulnerability
First reported
Last updated
Happening score
H score 8
2 unique sources, 2 articles

Summary

Hide ▲

SK Hynix DDR5 memory chips are affected by CVE-2025-6202, a Phoenix Rowhammer flaw disclosed by ETH Zürich and Google that can bypass Target Row Refresh (TRR) and other protections. Researchers said the attack can trigger bit flips on DDR5 systems with default settings, reach root on a commodity desktop in as little as 109 seconds, and may be used for SSH authentication bypass or sudo-based privilege escalation. The cited workaround is to raise the refresh rate to 3x, which stopped bit flips in the researchers’ test systems.

Related Happenings

Nvidia GPU GPUBreach Rowhammer-style page-table corruption privilege-escalation flaw

Vulnerability
First: 07.04.2026 14:31 Last: 07.04.2026 14:31 Sources 1

About this happening: Researchers demonstrated **GPUBreach**, a **Rowhammer-style weakness** in **Nvidia GPUs** that can corrupt **GPU page tables** and enable **arbitrary read-write access**. When pai...

Open Happening

GPUBreach GPU Rowhammer research enables GDDR6 page-table corruption and privilege escalation

Technical Analysis
First: 07.04.2026 00:44 Last: 07.04.2026 00:44 Sources 1

About this happening: **GPUBreach** research shows **Rowhammer** bit flips in **GDDR6** can corrupt **GPU page tables**, creating a path to **arbitrary GPU memory read/write** and potential **full syst...

Open Happening

CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551

Public Sector Action
First: 04.02.2026 07:50 Last: 04.02.2026 07:50 Sources 1

About this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...

Open Happening

WireTap memory-bus interposer analysis breaks Intel SGX attestation on DDR4 systems

Technical Analysis
First: 01.10.2025 20:20 Last: 01.10.2025 20:20 Sources 1

About this happening: Researchers demonstrated **WireTap**, a **memory-bus interposer** attack that can extract **Intel SGX attestation keys** on **DDR4 systems**, undermining enclave confidentiality a...

Open Happening

Timeline

  1. 15.09.2025 21:01 3 articles · 8mo ago

    Phoenix Rowhammer disclosure on SK Hynix DDR5

    Initial Disclosure

    Researchers at ETH Zurich and Google disclosed Phoenix, a new Rowhammer variant against SK Hynix DDR5 memory chips that bypasses Target Row Refresh (TRR) by exploiting missed refresh sampling across 128 and 2608 refresh intervals. The vulnerability is tracked as CVE-2025-6202, affects DIMM RAM modules produced between January 2021 and December 2024, and the described operational workaround is tripling the DRAM refresh interval (tREFI), which may cause errors, data corruption, or instability.

    Show sources
    Open in new tab