Rowhammer Vulnerability in SK Hynix DDR5 DIMMs
CVE-2025-6202

7.1HIGH

Key Information:

Vendor: Sk Hynix
Status: Ddr5
Vendor: CVE Published:; 15 September 2025

What is CVE-2025-6202?

A vulnerability in SK Hynix DDR5 DIMMs on x86 architecture allows local attackers to exploit Rowhammer bit flips. This issue compromises hardware integrity, leading to potential security breaches. The affected DIMMs were produced between January 2021 and December 2024, making them susceptible to unauthorized manipulation of memory bits. It highlights the ongoing risks associated with memory technologies and necessitates vigilance in cybersecurity practices.

Affected Version(s)

DDR5 x86 DIMMs produced from 2021-1 until 2024-12

References

https://comsec.ethz.ch/phoenix

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Jun 17, 2025

Sk Hynix

What is CVE-2025-6202?

Affected Version(s)

References

CVSS V4

Timeline