Summary
Detail | |||
---|---|---|---|
Vendor | Dell | First view | 2015-07-31 |
Product | Bios | Last view | 2022-10-11 |
Version | a14 | Type | Os |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:o:dell:bios |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
8.8 | 2022-10-11 | CVE-2022-32492 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. |
8.8 | 2022-10-11 | CVE-2022-32486 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. |
6 | 2015-07-31 | CVE-2015-2890 | The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile Workstation, and Precision Workstation Client Solutions (CS) devices with model-dependent firmware before A21 does not enforce a BIOS_CNTL locking protection mechanism upon being woken from sleep, which allows local users to conduct EFI flash attacks by leveraging console access, a similar issue to CVE-2015-3692. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (2) | CWE-20 | Improper Input Validation |