Legacy Serial Redirection SMRAM Vulnerabilities_CVE-2025-33045

8.2 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Description

APTIOV contains vulnerabilities in the BIOS where a privileged user may cause “Write-what-where Condition” and “Exposure of Sensitive Information to an Unauthorized Actor” through local access. The successful exploitation of these vulnerabilities can lead to information disclosure, arbitrary data writing, and impact Confidentiality, Integrity, and Availability.

Basic Information

ID CVE-2025-33045

Source AMI

Published Sep 9, 2025 at 14:00

Modified Sep 9, 2025 at 14:15

Affected Product

Vendor AMI

Product AptioV

Version AptioV_5.0

Affected Versions AMI AptioV AptioV_5.0

CWE Classification

CWE-123 CWE-200

References

go.ami.com /hubfs/Security%20Advisories/2025/AMI-SA-2025007.pdf

{
    "lastseen": "",
    "description": "APTIOV contains vulnerabilities in the BIOS where a privileged user may cause \u201cWrite-what-where Condition\u201d and \u201cExposure of Sensitive Information to an Unauthorized Actor\u201d through local access. The successful exploitation of these vulnerabilities can lead to information disclosure, arbitrary data writing, and impact Confidentiality, Integrity, and Availability.",
    "published": "2025-09-09T14:00:31.402Z",
    "modified": "2025-09-09T14:15:08.538Z",
    "type": "cve",
    "title": "Legacy Serial Redirection SMRAM Vulnerabilities",
    "source": "AMI",
    "references": "https://go.ami.com/hubfs/Security%20Advisories/2025/AMI-SA-2025007.pdf",
    "id": "CVE-2025-33045",
    "bulletinFamily": "",
    "cwe": [
        "CWE-123",
        "CWE-200"
    ],
    "cvelist": null,
    "sourceData": "AMI AptioV AptioV_5.0",
    "sourceHref": "",
    "cvss": {
        "score": 8.2,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AptioV",
    "version": "AptioV_5.0",
    "vendor": "AMI",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}