CVE-2022-29974

MEDIUM

AMI NTFS driver <1.0.0 - Buffer Overflow

Title source: llm

Description

AMI (aka American Megatrends) NTFS driver 1.0.0 (fixed in late 2021 or early 2022) has a buffer overflow. This driver is, for example, used in certain ASUS devices.

References (2)

Core 2

Core References

Various Sources

https://dfir.ru/2024/12/09/multiple-vulnerabilities-in-ami-file-system-drivers/

Various Sources

https://www.ami.com

Scores

CVSS v3 4.3

EPSS 0.0019

EPSS Percentile 40.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-120

Status published

Published Dec 09, 2024

Tracked Since Feb 18, 2026