Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

AMD StackWarp SEV-SNP bypass (CVE-2025-29943)

Vulnerability
First reported
Last updated
Happening score
H score 2
1 unique sources, 1 articles

Summary

Hide ▲

StackWarp is a CVE-2025-29943 hardware vulnerability in AMD Zen 1 through Zen 5 CPUs that can bypass SEV-SNP protections and expose confidential VM workloads. The flaw can let a privileged host attacker manipulate the guest stack pointer and drive remote code execution, privilege escalation, and secret exposure inside protected VMs. AMD says microcode updates were released in July and October 2025, with some AGESA patches still planned for April 2026. Operators of high-integrity CVMs may need to verify firmware status and consider temporary hyperthreading disablement.

Related Happenings

Linux distributions mitigation advisories for CVE-2026-31431

Advisory/Mitigation
First: 30.04.2026 12:24 Last: 30.04.2026 12:24 Sources 1

About this happening: Multiple **Linux distributions** released advisories for **CVE-2026-31431**, adding mitigation guidance for a **Linux kernel local privilege escalation** that can let an unprivile...

Open Happening

CISA KEV remediation order for CVE-2025-22225

Public Sector Action
First: 04.02.2026 19:38 Last: 04.02.2026 19:38 Sources 1

About this happening: **CISA** added **CVE-2025-22225** to the **Known Exploited Vulnerabilities (KEV)** catalog and ordered **federal agencies** to secure affected systems by **March 25, 2025**. The d...

Open Happening

N8n sandbox escape flaws (multiple vulnerabilities)

Vulnerability
First: 04.02.2026 15:00 Last: 04.02.2026 15:00 Sources 1

About this happening: Two **maximum-severity sandbox-escape flaws** in **n8n** expose **self-hosted and cloud instances** to **complete server takeover** and **credential theft**. An **authenticated us...

Open Happening

Broadcom VMware vCenter Server and Cloud Foundation patch advisory (CVE-2024-37079)

Advisory/Mitigation
First: 26.01.2026 13:49 Last: 26.01.2026 13:49 Sources 1

About this happening: **Broadcom** told customers to apply security patches for **CVE-2024-37079** in **vCenter Server** and **Cloud Foundation**, after the flaw was tied to **active exploitation** and...

Open Happening

HPE OneView RondoDox exploitation wave (CVE-2025-37164)

Exploitation Wave
First: 16.01.2026 11:15 Last: 16.01.2026 11:15 Sources 1

About this happening: **RondoDox** has driven a **large-scale exploitation wave** against **HPE OneView** by targeting **CVE-2025-37164**, with activity escalating into **automated attacks** that creat...

Open Happening

Timeline

  1. 19.01.2026 13:31 2 articles · 4mo ago

    CISPA discloses StackWarp hardware flaw affecting AMD SEV-SNP

    Initial Disclosure

    CISPA Helmholtz Center researchers disclosed StackWarp, a hardware vulnerability in AMD Zen 1 through Zen 5 processors that can let a privileged host attacker manipulate SEV-SNP guest stack pointers, run malicious code inside confidential VMs, and undermine the integrity guarantees of AMD Secure Encrypted Virtualization with Secure Nested Paging. AMD tracks the issue as CVE-2025-29943 with CVSS v4 4.6, and the same disclosure notes microcode updates released in July and October 2025, AGESA patches for EPYC Embedded 8004 and 9004 Series Processors scheduled for April 2026, and operator guidance to review hyperthreading and install available firmware updates.

    Show sources
    Open in new tab