Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM.
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HDell Alienware M15 R6
HWDellwszystkie wersjeDell Alienware M15 R6 Firmware
OSDell< 1.17.0Dell Alienware M15 R7
HWDellwszystkie wersjeDell Alienware M15 R7 Firmware
OSDell< 1.4.3Dell Alienware M15 Ryzen Edition R5
HWDellwszystkie wersjeDell Alienware M15 Ryzen Edition R5 Firmware
OSDell< 1.8.0Dell Alienware M17 R5 Amd
HWDellwszystkie wersjeDell Alienware M17 R5 Amd Firmware
OSDell< 1.4.3Dell G15 5510
HWDellwszystkie wersjeDell G15 5510 Firmware
OSDell< 1.16.0Dell G15 5511
HWDellwszystkie wersjeDell G15 5511 Firmware
OSDell< 1.18.0Dell G15 5515
HWDellwszystkie wersjeDell G15 5515 Firmware
OSDell< 1.8.0Dell G15 5525
HWDellwszystkie wersjeDell G15 5525 Firmware
OSDell< 1.4.3Dell G5 Se 5505
HWDellwszystkie wersjeDell G5 Se 5505 Firmware
OSDell< 1.13.0Dell Inspiron 14 5410 2 In 1
HWDellwszystkie wersjeDell Inspiron 14 5410 2 In 1 Firmware
OSDell< 2.15.2Dell Inspiron 15 3511
HWDellwszystkie wersjeDell Inspiron 15 3511 Firmware
OSDell< 1.18.2Dell Inspiron 3195 2 In 1
HWDellwszystkie wersjeDell Inspiron 3195 2 In 1 Firmware
OSDell< 1.6.0Dell Inspiron 3275
HWDellwszystkie wersjeDell Inspiron 3275 Firmware
OSDell< 1.9.2Dell Inspiron 3475
HWDellwszystkie wersjeDell Inspiron 3475 Firmware
OSDell< 1.9.2Dell Inspiron 3505
HWDellwszystkie wersjeDell Inspiron 3505 Firmware
OSDell< 1.9.0
Related vulnerabilities
Obejście mechanizmu ochrony w Dell ThinOS 10 (Auth Bypass)
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation ...
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Delimiters in ...
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resou...
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A local low-pr...