ASRock, ASRockRack, ASRockInd｜Motherboard – Protection Mechanism Failure_CVE-2025-14304

7 / 10

HIGH

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.

Basic Information

ID CVE-2025-14304

Source twcert

Published Dec 17, 2025 at 03:23

Affected Product

Vendor ASRock

Product Intel 500 chipset motherboard

Affected Versions ASRock Intel 500 chipset motherboard 0
ASRockRack Intel 500 chipset motherboard 0
ASRockInd Intel 500 chipset motherboard 0
ASRock Intel 600 chipset motherboard 0
ASRockRack Intel 600 chipset motherboard 0
ASRockInd Intel 600 chipset motherboard 0
ASRock Intel 700 chipset motherboard 0
ASRockRack Intel 700 chipset motherboard 0
ASRockInd Intel 700 chipset motherboard 0
ASRock Intel 800 chipset motherboard 0
ASRockRack Intel 800 chipset motherboard 0
ASRockInd Intel 800 chipset motherboard 0

CWE Classification

CWE-693

References

{
    "lastseen": "",
    "description": "Certain motherboard models developed by ASRock and its subsidiaries, ASRockRack and ASRockInd. has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.",
    "published": "2025-12-17T03:23:24.677Z",
    "modified": "2025-12-17T03:23:24.677Z",
    "type": "cve",
    "title": "ASRock, ASRockRack, ASRockInd\uff5cMotherboard - Protection Mechanism Failure",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10578-c43b4-1.html\nhttps://www.twcert.org.tw/en/cp-139-10579-9205b-2.html\nhttps://www.asrock.com/support/Security.asp\nhttps://www.asrockind.com/zh-tw/security-center",
    "id": "CVE-2025-14304",
    "bulletinFamily": "",
    "cwe": [
        "CWE-693"
    ],
    "cvelist": null,
    "sourceData": "ASRock Intel 500 chipset motherboard 0\nASRockRack Intel 500 chipset motherboard 0\nASRockInd Intel 500 chipset motherboard 0\nASRock Intel 600 chipset motherboard 0\nASRockRack Intel 600 chipset motherboard 0\nASRockInd Intel 600 chipset motherboard 0\nASRock Intel 700 chipset motherboard 0\nASRockRack Intel 700 chipset motherboard 0\nASRockInd Intel 700 chipset motherboard 0\nASRock Intel 800 chipset motherboard 0\nASRockRack Intel 800 chipset motherboard 0\nASRockInd Intel 800 chipset motherboard 0",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Intel 500 chipset motherboard",
    "version": "0",
    "vendor": "ASRock",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}