CVE-2025-0033 AMD SNP RMP Corruption - Critical Impact, Local High-Priv Exploit Conditions

Microsoft’s Security Update Guide lists CVE-2025-0033 affecting AMD Secure Nested Paging (SNP) during RMP initialization. The entry classifies impact as Critical and ties to Remote Code Execution impact semantics, while the CVSS vector indicates local attack vector with high privileges required (CVSS 3.1 base 8.2; scope changed; C/I/A High). No public exploit is referenced (Exploit Maturity: Unproven), and an official fix is available per the advisory. Practically, exploitation would require an attacker with significant control on a target system (e.g., post-compromise or malicious privileged tenant context) to corrupt the Reverse Map Table during SNP initialization, potentially leading to code execution beyond the intended isolation boundary. Because SNP underpins memory integrity guarantees for virtualized/isolated workloads, a successful attack could undermine confidentiality and integrity for assets presumed isolated, with knock-on impacts for multi-tenant and confidential computing scenarios. Organizations operating AMD-based hosts in virtualized or confidential VM contexts should treat remediation as high priority to preserve isolation guarantees, especially in environments with heterogeneous trust zones or where privileged cloud/host roles may be exposed to supply chain or insider threats.