cvedb.io
CVE-2025-9614
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2025-12-09T19:15:50.943 · Last modified 2026-06-17T10:09:23.050

Summary

An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification, where insufficient guidance on re-keying and stream flushing during device rebinding may allow stale write transactions from a previous security context to be processed in a new one. This can lead to unintended data access across trusted domains, compromising confidentiality and integrity.

Affected products

pcisig — pci_express_integrity_and_data_encryption

Does this affect you?

Add your gear to cvedb and we'll alert you only when pcisig ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.