AMD disclosed a serious vulnerability in its Zen 5 processor series, designated as CVE-2025-62626. It stems from an issue with the RDSEED instruction, which should generate secure random numbers for cryptographic functions. When exploited, this flaw can return zero instead of a valid random number, potentially compromising security workflows significantly.
The bug was initially shared on the Linux kernel mailing list, illustrating the sometimes unpredictable nature of vulnerability reporting. The severity is underlined by the role of random number generation in cryptographic security, meaning affected systems could produce weak keys or tokens, creating avenues for data breaches. AMD plans to release microcode updates for its processors, targeting specific series by late 2025 into early 2026, recommending that organizations adopt interim workarounds meanwhile.
👉 Pročitaj original: Cyber Security News
