Denial of Service Vulnerability in Intel Xeon Processors
CVE-2025-21090

4.1MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Xeon(r) Processors
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-21090?

A vulnerability has been identified in certain Intel Xeon processors due to a missing reference to an active allocated resource. This flaw may enable an authenticated user to potentially trigger a denial-of-service attack with local access, affecting system availability and performance. It is essential for users and administrators to evaluate their systems for this vulnerability and implement recommended mitigations to secure their environments.

Affected Version(s)

Intel(R) Xeon(R) processors See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

4.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Jan 9, 2025

JSON