CVE-2025-22834 PUBLISHED

ThirdPartyVideo SetVariable Vulnerability

Assigner: AMI
Reserved: 08.01.2025 Published: 12.08.2025 Updated: 12.08.2025

AMI APTIOV contains a vulnerability in BIOS where a user may cause “Improper Initialization” by local accessing. Successful exploitation of this vulnerability may leave the resource in an unexpected state and potentially impact confidentiality, integrity, and availability.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
CVSS Score: 4.2

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	High	Integrity Impact	Low
User Interaction	None	Availability Impact	Low

CVSS 3.1

Product Status

Vendor	AMI
Product	AptioV
Versions	Default: unaffected affected from AptioV_5.0 to AptioV_5.040 (incl.)

References

https://go.ami.com/hubfs/Security%20Advisories/2025/AMI-SA-2025006.pdf

Problem Types

CWE-665 Improper Initialization CWE