At this point, most competitive online multiplayer games on the PC come with some kind of kernel-level anti-cheat software. As we’ve written before, this is software that runs with more elevated privileges than most other apps and games you run on your PC, allowing it to load in earlier and detect advanced methods of cheating. More recently, anti-cheat software has started to require more Windows security features like Secure Boot, a TPM 2.0 module, and virtualization-based memory integrity protection.
Riot Games, best known for titles like Valorant and League of Legends and the Vanguard anti-cheat software, has often been one of the earliest to implement new anti-cheat requirements. There’s already a long list of checks that systems need to clear before they’ll be allowed to play Riot’s games online, and now the studio is announcing a new one: a BIOS update requirement that will be imposed on “certain players” following Riot’s discovery of a UEFI bug that could allow especially dedicated and motivated cheaters to circumvent certain memory protections.
In short, the bug affects the input-output memory management unit (IOMMU) “on some UEFI-based motherboards from multiple vendors.” One feature of the IOMMU is to protect system memory from direct access during boot by external hardware devices, which otherwise might manipulate the contents of your PC’s memory in ways that could enable cheating.
The patch for these security vulnerabilities (CVE-2025-11901, CVE-2025‑14302, CVE-2025-14303, and CVE-2025-14304) fixes a problem where this pre-boot direct memory access (DMA) protection could be disabled even if it was marked as enabled in the BIOS, creating a small window during the boot process where DMA devices could gain access to RAM.
The relative obscurity and complexity of this hardware exploit means that Vanguard isn’t going to be enforcing these BIOS requirements on every single player of its games. For now, it will just apply to “restricted” players of Valorant whose systems, for one reason or another, are “too similar to cheaters who get around security features in order to become undetectable to Vanguard.”