Improper input validation in BIOS
CVE-2023-39535

7.5HIGH

Key Information:

Vendor

Ami

Status
Aptiov
Vendor
CVE Published:
14 November 2023

What is CVE-2023-39535?

AMI AptioV contains a vulnerability within its BIOS that allows attackers to exploit improper input validation, specifically via local network access. This may result in unauthorized manipulation of sensitive data, compromising the confidentiality, integrity, and availability of the system. Organizations using affected versions should take immediate steps to mitigate risks associated with this vulnerability.

Affected Version(s)

AptioV *

References

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443...

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
The Cyber Security Vulnerability Database.