HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2022-32490

CVSS 7.5v3.1pub. 2023-01-18upd. 2024-11-21

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Dell Edge Gateway 3000

    HW
    Dell
    wszystkie wersje
  • Dell Edge Gateway 3000 Firmware

    OS
    Dell
    < 1.9.0
  • Dell Edge Gateway 5000

    HW
    Dell
    wszystkie wersje
  • Dell Edge Gateway 5000 Firmware

    OS
    Dell
    < 1.19.0
  • Dell Embedded Box Pc 3000

    HW
    Dell
    wszystkie wersje
  • Dell Embedded Box Pc 3000 Firmware

    OS
    Dell
    < 1.15.0
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2024-47238HIGH7.5ten sam produkt

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed compo...

CVE-2024-22429HIGH7.5ten sam produkt

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin...

CVE-2023-24571HIGH7.5ten sam produkt

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admi...

CVE-2022-34398HIGH7.5ten sam produkt

Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a...

CVE-2022-32487HIGH7.5ten sam produkt

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potent...

CVE-2022-32490 β€” Dell β€” Edge Gateway 3000 β€” HIGH β€” CVSS 7.5 | CVEbaza.pl