Login Sign Up

CVE-2025-9612

5.1 MEDIUM

📋 TL;DR

This CVE describes a vulnerability in the PCI Express IDE specification where insufficient guidance on packet ordering and tag uniqueness may allow encrypted packets to be replayed or reordered without detection. This enables local or physical attackers on the PCIe bus to violate data integrity protections. Systems using PCIe IDE encryption for data protection are affected.

💻 Affected Systems

Products:
  • Systems implementing PCIe IDE specification for encryption
Versions: All versions of PCIe IDE specification prior to remediation
Operating Systems: All operating systems using PCIe IDE encryption
Default Config Vulnerable: ⚠️ Yes
Notes: Affects systems using PCIe IDE encryption feature; standard PCIe without IDE encryption is not affected.

📦 What is this software?

Pci Express Integrity And Data Encryption by Pcisig

View all CVEs affecting Pci Express Integrity And Data Encryption →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could manipulate encrypted PCIe traffic to corrupt or replay data, potentially compromising system integrity, enabling data tampering, or facilitating privilege escalation attacks.

🟠

Likely Case

Local attackers with physical or privileged access could manipulate PCIe traffic to bypass integrity checks, potentially leading to data corruption or unauthorized data access.

🟢

If Mitigated

With proper access controls and monitoring, the impact is limited to denial of service or data corruption rather than full system compromise.

🌐 Internet-Facing: LOW - This vulnerability requires local or physical access to the PCIe bus, not remote network access.
🏢 Internal Only: MEDIUM - Internal attackers with physical or privileged access could exploit this, but requires specific hardware access conditions.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Exploitation requires physical or privileged access to PCIe bus and understanding of PCIe IDE implementation details.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Updated PCIe IDE specification

Vendor Advisory: https://pcisig.com/PCIeIDEStandardVulnerabilities

Restart Required: Yes

Instructions:

1. Check with hardware vendors for BIOS/firmware updates addressing PCIe IDE implementation. 2. Apply vendor-provided patches. 3. Restart systems to apply changes. 4. Verify PCIe IDE functionality post-update.

🔧 Temporary Workarounds

Disable PCIe IDE encryption

all

Temporarily disable PCIe IDE encryption feature if not required

Check BIOS/UEFI settings for PCIe IDE/encryption options

Restrict physical access

all

Implement strict physical security controls for systems using PCIe IDE

🧯 If You Can't Patch

  • Implement strict physical security controls to prevent unauthorized access to PCIe bus
  • Monitor system logs for unusual PCIe-related errors or integrity violations

🔍 How to Verify

Check if Vulnerable:

Check system BIOS/UEFI settings for PCIe IDE encryption status and consult hardware vendor advisories

Check Version:

dmidecode -t bios (Linux) or wmic bios get smbiosbiosversion (Windows)

Verify Fix Applied:

Verify with hardware vendor that updated BIOS/firmware addresses the PCIe IDE specification vulnerability

📡 Detection & Monitoring

Log Indicators:

  • PCIe integrity errors
  • IDE encryption failures
  • Unexpected system resets or crashes

Network Indicators:

  • Not applicable - local hardware vulnerability

SIEM Query:

Search for PCIe-related error messages or integrity violation alerts in system logs

📊 Metadata

CVE ID: CVE-2025-9612
CVSS v3 Score: 5.1 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score: 0.01% exploit probability (0.9th percentile)
Published: December 9, 2025
Last Updated: January 14, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON