Ami

Aptio V

29 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-33659

  • EPSS 0.02%
  • Veröffentlicht 11.02.2025 15:15:17
  • Zuletzt bearbeitet 02.10.2025 14:35:03

AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation by a local attacker. Successful exploitation of these vulnerabilities may lead to overwriting arbitrary memory and execute arbitrary code at SMM leve...

7.8

CVE-2024-42444

  • EPSS 0.02%
  • Veröffentlicht 14.01.2025 15:15:25
  • Zuletzt bearbeitet 02.10.2025 14:33:37

APTIOV contains a vulnerability in BIOS where an attacker may cause a TOCTOU Race Condition by local means. Successful exploitation of this vulnerability may lead to execution of arbitrary code on the target device.

8.8

CVE-2024-42442

  • EPSS 0.23%
  • Veröffentlicht 12.11.2024 15:15:09
  • Zuletzt bearbeitet 02.10.2025 14:29:40

APTIOV contains a vulnerability in the BIOS where a user or attacker may cause an improper restriction of operations within the bounds of a memory buffer over the network. A successful exploitation of this vulnerability may lead to code execution out...

7.8

CVE-2024-33658

  • EPSS 0.04%
  • Veröffentlicht 12.11.2024 15:15:08
  • Zuletzt bearbeitet 02.10.2025 14:28:53

APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Restriction of Operations within the Bounds of a Memory Buffer by local. Successful exploitation of this vulnerability may lead to privilege escalation and potentially ar...

5.2

CVE-2024-33660

  • EPSS 0.03%
  • Veröffentlicht 12.11.2024 15:15:08
  • Zuletzt bearbeitet 02.10.2025 14:32:14

An exploit is possible where an actor with physical access can manipulate SPI flash without being detected.

7.1

CVE-2024-2315

  • EPSS 0.03%
  • Veröffentlicht 12.11.2024 15:15:07
  • Zuletzt bearbeitet 02.10.2025 14:28:05

APTIOV contains a vulnerability in BIOS where may cause Improper Access Control by a local attacker. Successful exploitation of this vulnerability may lead to unexpected SPI flash modifications and BIOS boot kit launches, also impacting the availabil...

7.8

CVE-2024-33657

  • EPSS 0.08%
  • Veröffentlicht 21.08.2024 17:15:07
  • Zuletzt bearbeitet 21.08.2024 17:24:59

This SMM vulnerability affects certain modules, allowing privileged attackers to execute arbitrary code, manipulate stack memory, and leak information from SMRAM to kernel space, potentially leading to denial-of-service attacks.

7.8

CVE-2024-33656

  • EPSS 0.01%
  • Veröffentlicht 21.08.2024 17:15:07
  • Zuletzt bearbeitet 21.08.2024 17:24:59

The DXE module SmmComputrace contains a vulnerability that allows local attackers to leak stack or global memory. This could lead to privilege escalation, arbitrary code execution, and bypassing OS security mechanisms

7.8

CVE-2023-39539

  • EPSS 0.34%
  • Veröffentlicht 06.12.2023 16:15:07
  • Zuletzt bearbeitet 21.11.2024 08:15:38

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Ava...

7.8

CVE-2023-39538

  • EPSS 0.01%
  • Veröffentlicht 06.12.2023 16:15:07
  • Zuletzt bearbeitet 21.11.2024 08:15:37

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a BMP Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Ava...