CVE-2023-39535Improper Input Validation in Aptiov

CWE-20Improper Input Validation3 documents3 sources
Severity
7.8HIGHNVD
CNA7.5
EPSS
0.1%
top 79.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
AMI Aptiov
Timeline
PublishedNov 14
Latest updateNov 15

Description

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. A successful exploit of this vulnerability may lead to a loss of confidentiality, integrity and availability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

CVEListV5ami/aptiov*

🔴Vulnerability Details

2
GHSA
GHSA-r22x-56pw-w758: AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network2023-11-15
CVEList
Improper input validation in BIOS2023-11-14
CVE-2023-39535 — Improper Input Validation in Aptiov | cvebase