CVE-2023-39539

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability. 
Configurations

Configuration 1 (hide)

cpe:2.3:o:ami:aptio_v:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 7.5
References () https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023009.pdf - Vendor Advisory () https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023009.pdf - Vendor Advisory
References () https://security.netapp.com/advisory/ntap-20240105-0003/ - () https://security.netapp.com/advisory/ntap-20240105-0003/ -
References () https://www.kb.cert.org/vuls/id/811862 - () https://www.kb.cert.org/vuls/id/811862 -

05 Jan 2024, 18:15

Type Values Removed Values Added
References
  • () https://security.netapp.com/advisory/ntap-20240105-0003/ -

16 Dec 2023, 01:15

Type Values Removed Values Added
References
  • () https://www.kb.cert.org/vuls/id/811862 -

12 Dec 2023, 16:28

Type Values Removed Values Added
CWE CWE-434
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CPE cpe:2.3:o:ami:aptio_v:*:*:*:*:*:*:*:*
References () https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023009.pdf - () https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023009.pdf - Vendor Advisory

06 Dec 2023, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-06 16:15

Updated : 2024-11-21 08:15


NVD link : CVE-2023-39539

Mitre link : CVE-2023-39539

CVE.ORG link : CVE-2023-39539


JSON object : View

Products Affected

ami

  • aptio_v
CWE
CWE-20

Improper Input Validation

CWE-434

Unrestricted Upload of File with Dangerous Type