Lucene search
K

113 matches found

Positive Technologies
Positive Technologies
added 2025/05/29 12:0 a.m.7 views

PT-2025-23166 · Aptiov · Aptiov

Name of the Vulnerable Software and Affected Versions: APTIOV affected versions not specified Description: The issue is related to an Improper Input Validation in the BIOS, which can be exploited locally by an attacker. This could potentially impact the integrity of the system. Recommendations: A...

5.8CVSS7.3AI score0.00174EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.4 views

AMI APTIOV BIOS 安全漏洞

AMI APTIOV BIOS is a modern BIOS firmware solution based on the UEFI specification from AMI. A security vulnerability exists in AMI APTIOV BIOS that stems from improper input validation in the BIOS, which may affect integrity...

6.1CVSS7.7AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:41 a.m.8 views

CVE-2023-39538

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

7.8CVSS6.9AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:40 a.m.14 views

CVE-2023-39539

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

7.8CVSS6.8AI score0.00623EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:11 a.m.13 views

CVE-2023-39535

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.8CVSS6.7AI score0.00206EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:11 a.m.7 views

CVE-2023-39536

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.8CVSS6.7AI score0.00206EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/15 2:20 p.m.6 views

CVE-2024-42446

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS7.2AI score0.00111EPSS
Exploits0References3
OSV
OSV
added 2025/05/13 2:15 p.m.5 views

CVE-2024-42446

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7CVSS6AI score0.00111EPSS
Exploits0References1
NVD
NVD
added 2025/05/13 2:15 p.m.17 views

CVE-2024-42446

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS0.00111EPSS
Exploits0References1
CVE
CVE
added 2025/05/13 2:2 p.m.71 views

CVE-2024-42446

CVE-2024-42446 affects AMI AptioV BIOS with a TOCTOU race condition in BIOS code that can be triggered by a local attacker, potentially leading to arbitrary code execution. The description and connected sources consistently cite a local-exploit path and a high-impact outcomes (arbitrary code exec...

7.5CVSS7.7AI score0.00111EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/13 2:2 p.m.6 views

CVE-2024-42446 TOCTOU in SmmWhea

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS7.6AI score0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 2:2 p.m.20 views

CVE-2024-42446 TOCTOU in SmmWhea

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS0.00111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.6 views

PT-2025-20900 · Aptiov · Aptiov

Name of the Vulnerable Software and Affected Versions: APTIOV affected versions not specified Description: The issue is related to a Time-of-check Time-of-use TOCTOU Race Condition in the BIOS, which can be exploited by an attacker through local means. This could potentially lead to arbitrary cod...

7.5CVSS6.6AI score0.00111EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/03/13 4:40 p.m.8 views

CVE-2024-54084

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS7.1AI score0.00114EPSS
Exploits0References3
NVD
NVD
added 2025/03/11 2:15 p.m.15 views

CVE-2024-54084

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS0.00114EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/11 2:1 p.m.11 views

CVE-2024-54084 SMM Arbitrary Write via TOCTOU Vulnerability

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS7.7AI score0.00114EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 2:1 p.m.41 views

CVE-2024-54084

CVE-2024-54084: APTIOV BIOS vulnerability causes a TOCTOU race condition that an attacker can exploit locally to achieve arbitrary code execution. Documents indicate an impact to BIOS components with high confidentiality, integrity, and availability implications and a local attack vector with hig...

7.5CVSS7.5AI score0.00114EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/11 2:1 p.m.16 views

CVE-2024-54084 SMM Arbitrary Write via TOCTOU Vulnerability

APTIOV contains a vulnerability in BIOS where an attacker may cause a Time-of-check Time-of-use TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to arbitrary code execution...

7.5CVSS0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/13 4:47 p.m.7 views

CVE-2024-33659

AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbitrary memory and execute arbitrary code at SMM level, also impacting Confidentiality, Integrity, a...

5.7CVSS7.6AI score0.00155EPSS
Exploits0References3
NVD
NVD
added 2025/02/11 3:15 p.m.6 views

CVE-2024-33659

AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbitrary memory and execute arbitrary code at SMM level, also impacting Confidentiality, Integrity, a...

8.8CVSS0.00155EPSS
Exploits0References1
Rows per page
Query Builder