GCP-2026-008 — Published: 2026-02-10Description Description Severity Notes A set of security vulnerabilities affect Intel® TDX firmware.

Published: 2026-02-10Description Description Severity Notes A set of security vulnerabilities affect Intel® TDX firmware. These vulnerabilities encompass various flaws, including race conditions (CVE-2025-30513, CVE-2025-31944), out-of-bounds reads (CVE-2025-32007, CVE-2025-27940), use of an uninitialized variable (CVE-2025-32467), and exposure of sensitive information during transient execution (CVE-2025-27572). Collectively, these issues may allow information disclosure, escalation of privilege, or denial of service. Exploitation generally requires privileged user access on the system. What should I do? No customer action is required. All relevant fixes have been applied to the Google server fleet. For more information, see Intel's PSIRT technical advisory INTEL-TA-01397. High CVE-2025-30513 CVE-2025-31944 CVE-2025-32007 CVE-2025-32467 CVE-2025-27572 CVE-2025-27940