Improper input validation in BIOS TCG2
CVE-2023-39537

7.5HIGH

Key Information:

Vendor: Ami
Status: Aptiov
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-39537?

The AMI AptioV BIOS has a vulnerability that arises from improper input validation. An attacker can exploit this flaw over a local network, potentially compromising the system’s confidentiality, integrity, and availability. Users of the affected BIOS versions should promptly apply the latest security updates to mitigate risks associated with this vulnerability.

Affected Version(s)

AptioV *

References

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Aug 3, 2023

Ami

What is CVE-2023-39537?

Affected Version(s)

References

CVSS V3.1

Timeline