Improper input validation in BIOS OFBD
CVE-2023-39536

7.5HIGH

Key Information:

Vendor: Ami
Status: Aptiov
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-39536?

AMI AptioV BIOS has an improper input validation vulnerability that can be exploited by an attacker over the local network. This flaw poses significant risks, potentially compromising the confidentiality, integrity, and availability of systems utilizing this BIOS version. Organizations using affected versions should address this vulnerability promptly to safeguard their network and data.

Affected Version(s)

AptioV *

References

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Aug 3, 2023

Ami

What is CVE-2023-39536?

Affected Version(s)

References

CVSS V3.1

Timeline