113 matches found
PT-2024-25418 · Aptiov · Aptiov
Name of the Vulnerable Software and Affected Versions: APTIOV affected versions not specified Description: The issue is related to an improper restriction of operations within the bounds of a memory buffer in the BIOS, which can be exploited locally. Successful exploitation may lead to privilege...
AMI AptioV 安全漏洞
AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV that stems from improper access control...
AMI AptioV 安全漏洞
AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV. An attacker could exploit the vulnerability to escalate privileges and execute arbitrary code...
AMI AptioV 安全漏洞
AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV. An attacker exploiting this vulnerability could manipulate the SPI flash memory without being detected...
PT-2024-25417 · Aptiov · Aptiov
Name of the Vulnerable Software and Affected Versions: AptioV affected versions not specified Description: This issue affects certain modules, allowing privileged attackers to execute arbitrary code, manipulate stack memory, and leak information from SMRAM to kernel space, potentially leading to...
CVE-2023-39538 Failure when uploading a Logo image file
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...
CVE-2023-39538
CVE-2023-39538 concerns AMI AptioV BIOS where an attacker with local access can trigger an unrestricted upload of a BMP Logo file deemed dangerous, potentially affecting confidentiality, integrity, and availability. The vulnerability stems from BMP logo handling in AMI AptioV BIOS and has been di...
CVE-2023-39539 Failure when uploading a Logo image file
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...
CVE-2023-39539 Failure when uploading a Logo image file
AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...
CVE-2023-39539
CVE-2023-39539 corresponds to a vulnerability in AMI AptioV BIOS where a user with local access can trigger an unrestricted upload of a PNG logo file (via the BMP Logo Handler) with a dangerous type. The underlying issue is described as a local elevation/impactful modification of boot-time/logo h...
AMI AptioV Code Issue Vulnerability
AMI AptioV is a firmware from AMI. A security vulnerability exists in AMI AptioV that stems from the possibility of unrestricted uploading of dangerous types of BMP logo files via local access, the successful exploitation of which may result in loss of confidentiality, integrity and availability...
PT-2023-8204 · Ami · Ami Aptiov
Name of the Vulnerable Software and Affected Versions: AMI AptioV affected versions not specified Description: The issue is related to the BMP Logo Handler component in the AMI AptioV BIOS setup utility, which allows for an unrestricted upload of dangerous file types, including PNG logo files. Th...
CVE-2023-39537
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
Input validation
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
Input validation
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
Input validation
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
CVE-2023-39537 Improper input validation in BIOS TCG2
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
CVE-2023-39537
AMI AptioV BIOS contains a vulnerability where improper input validation over a local network can lead to loss of confidentiality, integrity, and availability. Affected: AMI AptioV BIOS firmware (TCG2 context). Root cause: improper input validation in BIOS as described in CVE-2023-39537. Impact: ...
CVE-2023-39536 Improper input validation in BIOS OFBD
AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...
CVE-2023-39536
AMI AptioV BIOS contains an improper input validation vulnerability that can be exploited over a local network, potentially impacting confidentiality, integrity, and availability. Affected software: AMI AptioV BIOS. Root cause: input validation issue in BIOS handling over LAN. Exploitation status...