Lucene search
K

113 matches found

Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.7 views

PT-2024-25418 · Aptiov · Aptiov

Name of the Vulnerable Software and Affected Versions: APTIOV affected versions not specified Description: The issue is related to an improper restriction of operations within the bounds of a memory buffer in the BIOS, which can be exploited locally. Successful exploitation may lead to privilege...

4.4CVSS7.8AI score0.00189EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.4 views

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV that stems from improper access control...

7.1CVSS6.8AI score0.00127EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.4 views

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV. An attacker could exploit the vulnerability to escalate privileges and execute arbitrary code...

7.8CVSS7.4AI score0.00189EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.7 views

AMI AptioV 安全漏洞

AMI AptioV is a firmware-related editor from AMI USA. A security vulnerability exists in AMI AptioV. An attacker exploiting this vulnerability could manipulate the SPI flash memory without being detected...

5.2CVSS6.7AI score0.00144EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/21 12:0 a.m.4 views

PT-2024-25417 · Aptiov · Aptiov

Name of the Vulnerable Software and Affected Versions: AptioV affected versions not specified Description: This issue affects certain modules, allowing privileged attackers to execute arbitrary code, manipulate stack memory, and leak information from SMRAM to kernel space, potentially leading to...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/12/06 3:17 p.m.4 views

CVE-2023-39538 Failure when uploading a Logo image file

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

7.5CVSS5.4AI score0.00224EPSS
Exploits0References2
CVE
CVE
added 2023/12/06 3:17 p.m.92 views

CVE-2023-39538

CVE-2023-39538 concerns AMI AptioV BIOS where an attacker with local access can trigger an unrestricted upload of a BMP Logo file deemed dangerous, potentially affecting confidentiality, integrity, and availability. The vulnerability stems from BMP logo handling in AMI AptioV BIOS and has been di...

7.8CVSS7.5AI score0.00224EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/06 3:15 p.m.15 views

CVE-2023-39539 Failure when uploading a Logo image file

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

7.5CVSS6.8AI score0.00623EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/12/06 3:15 p.m.38 views

CVE-2023-39539 Failure when uploading a Logo image file

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability...

7.5CVSS7.8AI score0.00623EPSS
Exploits0References3
CVE
CVE
added 2023/12/06 3:15 p.m.96 views

CVE-2023-39539

CVE-2023-39539 corresponds to a vulnerability in AMI AptioV BIOS where a user with local access can trigger an unrestricted upload of a PNG logo file (via the BMP Logo Handler) with a dangerous type. The underlying issue is described as a local elevation/impactful modification of boot-time/logo h...

7.8CVSS7.5AI score0.00623EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/12/06 12:0 a.m.3 views

AMI AptioV Code Issue Vulnerability

AMI AptioV is a firmware from AMI. A security vulnerability exists in AMI AptioV that stems from the possibility of unrestricted uploading of dangerous types of BMP logo files via local access, the successful exploitation of which may result in loss of confidentiality, integrity and availability...

7.8CVSS7.5AI score0.00224EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.7 views

PT-2023-8204 · Ami · Ami Aptiov

Name of the Vulnerable Software and Affected Versions: AMI AptioV affected versions not specified Description: The issue is related to the BMP Logo Handler component in the AMI AptioV BIOS setup utility, which allows for an unrestricted upload of dangerous file types, including PNG logo files. Th...

7.8CVSS7.3AI score0.00623EPSS
Exploits0References10
NVD
NVD
added 2023/11/14 10:15 p.m.22 views

CVE-2023-39537

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.8CVSS0.00206EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 10:15 p.m.16 views

Input validation

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

4.3CVSS6.9AI score0.00206EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 10:15 p.m.20 views

Input validation

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

4.3CVSS6.9AI score0.00206EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 10:15 p.m.18 views

Input validation

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

4.3CVSS6.9AI score0.00206EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/14 9:24 p.m.18 views

CVE-2023-39537 Improper input validation in BIOS TCG2

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.5CVSS6.7AI score0.00206EPSS
Exploits0References1
CVE
CVE
added 2023/11/14 9:24 p.m.36 views

CVE-2023-39537

AMI AptioV BIOS contains a vulnerability where improper input validation over a local network can lead to loss of confidentiality, integrity, and availability. Affected: AMI AptioV BIOS firmware (TCG2 context). Root cause: improper input validation in BIOS as described in CVE-2023-39537. Impact: ...

7.8CVSS7.4AI score0.00206EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/14 9:24 p.m.22 views

CVE-2023-39536 Improper input validation in BIOS OFBD

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability...

7.5CVSS7.7AI score0.00206EPSS
Exploits0References1
CVE
CVE
added 2023/11/14 9:24 p.m.34 views

CVE-2023-39536

AMI AptioV BIOS contains an improper input validation vulnerability that can be exploited over a local network, potentially impacting confidentiality, integrity, and availability. Affected software: AMI AptioV BIOS. Root cause: input validation issue in BIOS handling over LAN. Exploitation status...

7.8CVSS7.4AI score0.00206EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder