Improper input validation in BIOS
CVE-2023-39535

7.5HIGH

Key Information:

Vendor: Ami
Status: Aptiov
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-39535?

AMI AptioV contains a vulnerability within its BIOS that allows attackers to exploit improper input validation, specifically via local network access. This may result in unauthorized manipulation of sensitive data, compromising the confidentiality, integrity, and availability of the system. Organizations using affected versions should take immediate steps to mitigate risks associated with this vulnerability.

Affected Version(s)

AptioV *

References

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Aug 3, 2023

Ami

What is CVE-2023-39535?

Affected Version(s)

References

CVSS V3.1

Timeline