Security vulnerability BIOS updates for GIGABYTE server, workstation, and motherboard products



 GIGABYTE Support:

CVE-2025-33043, CVE-2025-2884, CVE-2025-3052

Jul 18, 2025

Giga Computing Technology Co., Ltd. acknowledges the security vulnerabilities affecting GIGABYTE’s server, workstation, and motherboard products. The affected platforms are listed below.

PlatformBIOS Release Schedule
CVE-2025-33043
AMD EPYC™ 9005 Series Processors [1]Released
AMD EPYC™ 9004 Series Processors [1]Released
AMD EPYC™ 8004 Series ProcessorsReleased
AMD EPYC™ 7003 Series ProcessorsReleased
AMD EPYC™ 7002 Series ProcessorsReleased
AMD Instinct™ MI300A APUReleased
AMD EPYC™ 4005/4004 & Ryzen™ 9000/7000 Series ProcessorsReleased
Intel® Xeon® 6 ProcessorsReleased
5th/4th Gen Intel® Xeon® Scalable Processors & Intel® Xeon® CPU Max SeriesReleased
3rd Gen Intel® Xeon® Scalable ProcessorsReleased
Intel® Xeon® E-2400 SeriesReleased
Intel® Xeon® E-2300 SeriesReleased
Intel® Xeon® W-3500/2500/3400/2400 ProcessorsReleased
14th/13th/12th Gen Intel® Core™ ProcessorsReleased
CVE-2025-2884
AMD EPYC™ 4005/4004 & Ryzen™ 9000/7000 Series ProcessorsReleased
[1] XV23-ZX0 does not follow the AMD EPYC 9005/9004 Series Processors BIOS release schedule, please contact our sales team for further information on the BIOS release plan.

The vulnerabilities are listed below. Updated BIOS versions to address the threats will be available on all affected product pages.

Common Vulnerabilities or Exposures (CVEID): CVE-2025-33043
Severity Rating: Medium
Description: APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation locally. Successful exploitation of this vulnerability can potentially impact of integrity.

Common Vulnerabilities or Exposures (CVEID): CVE-2025-2884
Severity Rating: Medium
Description: TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0


 Source:

 
Click to expand...
Was I right in that, this latest issue can be installed like a root kit, that will hide in safe boot, or do they need to be at the pc to do so?
 

My Computer

System One

  • OS
    Windows 11 Pro
    Computer type
    PC/Desktop
    Manufacturer/Model
    Self built
    CPU
    Intel i7 9700k OC 5.0ghz
    Motherboard
    Gigabyte Z390 Master, Rev1.0, F13c Custom Bios
    Memory
    32gb Gskill 3200mhz OC 3600mhz
    Graphics Card(s)
    Nvidia RTX 4070 Super FE
    Sound Card
    Onboard ESS Saber
    Monitor(s) Displays
    QHD LG 27" 165hz, OC 180hz, Asus 27" 144hz
    Screen Resolution
    2k
    Hard Drives
    Nvme SSD Samsung 990 Pro 2TB, 970 echo plus 1tb + 970 echo 256gb.
    PSU
    EVGA SuperNova platinum 800w
    Case
    NZXT H500 sweat box, modified.
    Cooling
    NZXT Kraken x63.
    Keyboard
    Logitech G810
    Mouse
    Logitech G403
    Internet Speed
    1.1gb down 110mb up
You must log in or register to reply here.

Similar threads

  • Article Article
GIGABYTE motherboard BIOS updates for multiple SMM memory corruption vulnerabilities
Replies
0
Views
906
Brink
Brink
  • Article Article
Microsoft releases workaround for CVE-2022-0001 Specter Security Vulnerability
2 3
Replies
43
Views
29K
Almighty1
Almighty1
  • Article Article
Win Update KB5019177 Security Vulnerability Update for Windows 11 (21H2)
Replies
2
Views
2K
Noah W
N
  • Article Article
Win Update KB5019178 Security Vulnerability Update for Windows 11 (22H2)
Replies
19
Views
8K
SM03
SM03

Latest Support Threads

Latest Tutorials

Back
Top Bottom