HIGH🇬🇧 English

CVE-2022-32490

CVSS 7.5v3.1pub. 2023-01-18upd. 2024-11-21

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Dell Edge Gateway 3000

    HW
    Dell
    wszystkie wersje
  • Dell Edge Gateway 3000 Firmware

    OS
    Dell
    < 1.9.0
  • Dell Edge Gateway 5000

    HW
    Dell
    wszystkie wersje
  • Dell Edge Gateway 5000 Firmware

    OS
    Dell
    < 1.19.0
  • Dell Embedded Box Pc 3000

    HW
    Dell
    wszystkie wersje
  • Dell Embedded Box Pc 3000 Firmware

    OS
    Dell
    < 1.15.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2024-47238HIGH7.5ten sam produkt

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed compo...

CVE-2024-22429HIGH7.5ten sam produkt

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin...

CVE-2023-24571HIGH7.5ten sam produkt

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admi...

CVE-2022-34398HIGH7.5ten sam produkt

Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a...

CVE-2022-32487HIGH7.5ten sam produkt

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potent...