GIGABYTE｜Motherboard – Protection Mechanism Failure_CVE-2025-14302

7 / 10

HIGH

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.

Basic Information

ID CVE-2025-14302

Source twcert

Published Dec 17, 2025 at 03:07

Affected Product

Vendor GIGABYTE

Product intel 600 chipset Motherboard

Affected Versions GIGABYTE intel 600 chipset Motherboard 0
GIGABYTE intel 700 chipset Motherboard 0
GIGABYTE intel 800 chipset Motherboard 0
GIGABYTE AMD 600 chipset motherboard 0
GIGABYTE AMD 800 chipset motherboard 0
GIGABYTE AMD TRX50 chipset motherboard 0

CWE Classification

CWE-693

References

{
    "lastseen": "",
    "description": "Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security features are loaded.",
    "published": "2025-12-17T03:07:21.976Z",
    "modified": "2025-12-17T03:07:21.976Z",
    "type": "cve",
    "title": "GIGABYTE\uff5cMotherboard - Protection Mechanism Failure",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10574-ddf09-1.html\nhttps://www.twcert.org.tw/en/cp-139-10575-e4f41-2.html\nhttps://www.gigabyte.com/Support/Security?type=1",
    "id": "CVE-2025-14302",
    "bulletinFamily": "",
    "cwe": [
        "CWE-693"
    ],
    "cvelist": null,
    "sourceData": "GIGABYTE intel 600 chipset Motherboard 0\nGIGABYTE intel 700 chipset Motherboard 0\nGIGABYTE intel 800 chipset Motherboard 0\nGIGABYTE AMD 600 chipset motherboard 0\nGIGABYTE AMD 800 chipset motherboard 0\nGIGABYTE AMD TRX50 chipset motherboard 0",
    "sourceHref": "",
    "cvss": {
        "score": 7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "intel 600 chipset Motherboard",
    "version": "0",
    "vendor": "GIGABYTE",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}