CVE-2025-22833Out-of-bounds Write in Aptiov

CWE-787Out-of-bounds Write3 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.0%
top 90.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
AMI AptiovAMI Aptio V
Timeline
PublishedOct 14

Description

APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing. Successful exploitation of this vulnerability may lead to arbitrary code execution.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5ami/aptiovAptioV_5.0AptioV_5.040
NVDami/aptio_v5.05.041

🔴Vulnerability Details

2
GHSA
GHSA-r8fm-c9h2-4jg9: APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing2025-10-14
CVEList
FixupArray Pointer Validation in NTFS2025-10-14
CVE-2025-22833 — Out-of-bounds Write in AMI Aptiov | cvebase