CVE-2025-22833 | THREATINT

Description

APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing. Successful exploitation of this vulnerability may lead to arbitrary code execution.

PUBLISHED Reserved 2025-01-08 | Published 2025-10-14 | Updated 2025-10-14 | Assigner AMI

MEDIUM: 4.6CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-787 Out-of-bounds Write

Product status

Default status

unaffected

AptioV_5.0 (Custom) before AptioV_5.040

affected

Credits

Maxim Suhanov reporter

References

go.ami.com/hubfs/Security Advisories/2025/AMI-SA-2025008.pdf

cve.org (CVE-2025-22833)

nvd.nist.gov (CVE-2025-22833)

Download JSON