Denial of Service Vulnerability in Intel Xeon Processors
CVE-2025-21090

4.1MEDIUM

Key Information:

Vendor

Intel

Vendor
CVE Published:
12 August 2025

What is CVE-2025-21090?

A vulnerability has been identified in certain Intel Xeon processors due to a missing reference to an active allocated resource. This flaw may enable an authenticated user to potentially trigger a denial-of-service attack with local access, affecting system availability and performance. It is essential for users and administrators to evaluate their systems for this vulnerability and implement recommended mitigations to secure their environments.

Affected Version(s)

Intel(R) Xeon(R) processors See references

References

CVSS V4

Score:
4.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.