Cybersecurity specialists simply discovered a flaw in the UEFI firmware that many trendy motherboards use. The “bug” might let attackers do direct reminiscence entry (DMA) assaults on methods, which can allow unauthorized customers to realize deep and chronic entry to affected methods underneath sure situations, and the worst half is that it impacts boards from a number of main producers, together with Gigabyte, MSI, ASUS, and ASRock.
To provide you context, the PC motherboard incorporates low-level software program known as UEFI, or Unified Extensible Firmware Interface, which securely begins the working system and initializes {hardware} parts. Certainly one of its major safety obligations is to allow the Enter-Output Reminiscence Administration Unit (IOMMU), a hardware-based isolation mechanism that’s meant to safeguard system reminiscence. If arrange appropriately, the IOMMU stops exterior gadgets from studying or writing to random elements of system RAM.
Elements comparable to PCIe enlargement playing cards, Thunderbolt peripherals, GPUs, and related {hardware} that may entry reminiscence straight with out passing by way of the CPU are included in DMA-capable gadgets. Malicious or compromised {hardware} can have much less of an influence as a result of these gadgets are restricted to explicit reminiscence areas if the IOMMU is operational and correctly initialized.
The not too long ago found vulnerability is attributable to the unsuitable means this safety was arrange; in affected motherboards, the UEFI firmware says that DMA safety is on, regardless that the IOMMU was by no means totally or appropriately arrange, after which the working system consequently assumes that reminiscence protections are applied, regardless that they don’t seem to be actively enforced.
The problem is being tracked underneath a number of vulnerability identifiers: CVE-2025-11901, CVE-2025-14302, CVE-2025-14303, and CVE-2025-14304, as motherboard distributors implement UEFI options otherwise.
Researchers at Riot Video games, the developer of well-known multiplayer video games like League of Legends and Valorant, have been the primary ones to determine the vulnerability. Vanguard, Riot’s anti-cheat system, is applied on the kernel degree and incorporates safeguards which can be meant to stop unauthorized system manipulation. Valorant could also be prevented from launching on methods which can be affected by this particular flaw, as it detects an unsafe {hardware} safety state.
There may be an vital limitation to consider, regardless that the potential impact could possibly be horrible: the flexibility to bodily entry the system and join a malicious PCIe or related system earlier than the working system boots up are stipulations for a DMA assault. Consequently, the chance of widespread exploitation is considerably diminished, notably for residential customers.
Customers are being suggested to monitor updates from their motherboard producers and apply any obtainable firmware patches. Updating the UEFI firmware continues to be important to preserving system safety, notably in gentle of the continuing evolution of hardware-level assaults.
Filed in . Learn extra about Asus, Cybersecurity, Gigabyte, Msi and Security.
Trending Merchandise
Wi-fi Keyboard and Mouse Combo, 2.4G Silent Cordless Keyboard Mouse Combo for Home windows Chrome Laptop computer Laptop PC Desktop, 106 Keys Full Measurement with Quantity Pad, 1600 DPI Optical Mouse (Black)
TP-Hyperlink AX5400 WiFi 6 Router (Archer AX73)- Twin Band Gigabit Wi-fi Web Router, Excessive-Pace ax Router for Streaming, Lengthy Vary Protection, 5 GHz
NETGEAR Nighthawk WiFi 6 Router (RAX43) – Security Features, 5-Stream Dual-Band Gigabit Router, AX4200 Wireless Speed (Up to 4.2 Gbps), Covers up to 2,500 sq.ft. and 25 Devices
TP-Hyperlink AC1200 Gigabit WiFi Router (Archer A6) – Twin Band MU-MIMO Wi-fi Web Router, 4 x Antennas, OneMesh and AP mode, Lengthy Vary Protection
