Protection Mechanism Failure in MSI Motherboards
CVE-2025-14303

7HIGH

Key Information:

Vendor: Msi
Status: Intel 600 Chipset Motherboard; Intel 700 Chipset Motherboard
Vendor: CVE Published:; 17 December 2025

🔔 Create Msi Vulnerability Alert

What is CVE-2025-14303?

A vulnerability exists in certain MSI motherboard models due to improper enabling of IOMMU, allowing unauthenticated physical attackers to access arbitrary physical memory through a DMA-capable PCIe device. This issue arises before the operating system kernel and its security features are initialized, posing significant security risks and potential data exposure.

Affected Version(s)

Intel 600 chipset motherboard 0

Intel 700 chipset motherboard 0

References

https://www.twcert.org.tw/tw/cp-132-10576-0a0fd-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-10577-3cd58-2.html

third-party-advisory

https://csr.msi.com/global/product-security-advisories

vendor-advisory

CVSS V4

Score:

7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 17, 2025
Vulnerability Reserved
Dec 9, 2025

.

CVE-2025-14303 : Protection Mechanism Failure in MSI Motherboards