- CVE ID: CVE-2024-31719 Link
- Vulnerability Type: Incorrect Access Control
- Vendoer of Product: American Megatrends International, LLC.
- Product: AMI Aptio - 5
- Atack Type: Local
The Attacker can easily bypass the NvLock modules' access protection for NBRAM.
It is effortless bypass the NVRAM access protection and subsequently modify all variables stored in NVRAM, such as the administrator password.