CVE-2025-33043 — Improper Input Validation in Aptiov

CWE-20 — Improper Input Validation3 documents3 sources

Severity

6.1MEDIUMNVD

CNA5.8

EPSS

0.1%

top 84.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMI Aptio V AMI Aptiov

Timeline

PublishedMay 29

Description

APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation locally. Successful exploitation of this vulnerability can potentially impact of integrity.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:NExploitability: 1.8 | Impact: 4.2

Affected Packages2 packages

▶NVDami/aptio_v5.0 — 5.011

▶CVEListV5ami/aptiovAptioV_5.0 — AptioV_5.011

🔴Vulnerability Details

GHSA

GHSA-q358-6958-pqcv: APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation locally↗2025-05-29

▶

CVEList

SMM buffer Integrity↗2025-05-29

▶