Failure when uploading a Logo image file

AMI AptioV contains a vulnerability in BIOS where a User may cause an unrestricted upload of a PNG Logo file with dangerous type by Local access. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability. 

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

输入验证不恰当

AMI AptioV 代码问题漏洞

AMI AptioV是AMI公司的一个固件。 AMI AptioV 存在安全漏洞，该漏洞源于BIOS 中包含一个漏洞，用户可能会通过本地上传危险类型的 PNG Logo文件，攻击者利用该漏洞可能会导致系统机密性、完整性或可用性丧失。

N/A

N/A