CVE-2025-33045
BaseFortify
Publication date: 2025-09-09
Last updated on: 2025-10-02
Assigner: AMI
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ami | aptio_v | From 5.0 (inc) to 5.040 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
| CWE-123 | Any condition where the attacker has the ability to write an arbitrary value to an arbitrary location, often as the result of a buffer overflow. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in APTIOV BIOS allows a privileged user with local access to exploit issues such as 'Write-what-where Condition' and 'Exposure of Sensitive Information to an Unauthorized Actor.' This means the attacker can write arbitrary data to memory locations and access sensitive information improperly, potentially compromising the system's confidentiality, integrity, and availability.
How can this vulnerability impact me? :
Exploitation of this vulnerability can lead to unauthorized disclosure of sensitive information, arbitrary modification of data, and disruption of system operations, thereby affecting the confidentiality, integrity, and availability of the affected system.