Primary

Context

AMI AptioV BIOS Vulnerability Allowing Arbitrary Data Writing and Information Disclosure

Vulnerability

Patched

A vulnerability in AMI AptioV BIOS allows a privileged user to create a 'write-what-where' condition and expose sensitive information to an unauthorized actor through local access. Exploitation of this vulnerability could lead to arbitrary data writing and unauthorized information disclosure, impacting the confidentiality, integrity, and availability of the system.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, arbitrary data writing, and a negative impact on the system's confidentiality, integrity, and availability.

Remediation

Users can upgrade to AMI AptioV version 5.040 to address this vulnerability.

Added: Sep 9, 2025, 2:19 PM

Updated: Sep 9, 2025, 4:47 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

7.5

exploitability

2.8

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

7.5

exploitability

2.8

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMI AptioV BIOS Vulnerability Allowing Arbitrary Data Writing and Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

AMI AptioV

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating