2.3 - CVE-2022-31221

Executive Summary

Informations
Name	CVE-2022-31221	First vendor Publication	2022-09-12
Vendor	Cve	Last vendor Modification	2022-09-15

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Overall CVSS Score	2.3
Base Score	2.3	Environmental Score	2.3
impact SubScore	1.4	Temporal Score	2.3
Exploitabality Sub Score	0.8

Attack Vector	Local	Attack Complexity	Low
Privileges Required	High	User Interaction	None
Scope	Unchanged	Confidentiality Impact	Low
Integrity Impact	None	Availability Impact	None
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score	N/A	Attack Range	N/A
Cvss Impact Score	N/A	Attack Complexity	N/A
Cvss Expoit Score	N/A	Authentication	N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order access sensitive state information on the system.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31221

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-200	Information Exposure

CPE : Common Platform Enumeration

Type	Description	Count
Os	Dell Chengming 3900 Firmware cpe:2.3:o:dell:chengming_3900_firmware:::::::: cpe:2.3:o:dell:chengming_3900_firmware:-:::::::*	2
Os	Dell Inspiron 14 Plus 7420 Firmware cpe:2.3:o:dell:inspiron_14_plus_7420_firmware:::::::: cpe:2.3:o:dell:inspiron_14_plus_7420_firmware:-:::::::*	2
Os	Dell Inspiron 16 Plus 7620 Firmware cpe:2.3:o:dell:inspiron_16_plus_7620_firmware:::::::: cpe:2.3:o:dell:inspiron_16_plus_7620_firmware:-:::::::*	2
Os	Dell Inspiron 3910 Firmware cpe:2.3:o:dell:inspiron_3910_firmware:::::::: cpe:2.3:o:dell:inspiron_3910_firmware:-:::::::*	2
Os	Dell Inspiron 5320 Firmware cpe:2.3:o:dell:inspiron_5320_firmware::::::::	1
Os	Dell Inspiron 5420 Firmware cpe:2.3:o:dell:inspiron_5420_firmware::::::::	1
Os	Dell Inspiron 5620 Firmware cpe:2.3:o:dell:inspiron_5620_firmware:::::::: cpe:2.3:o:dell:inspiron_5620_firmware:-:::::::*	2
Os	Dell Inspiron 7420 Firmware cpe:2.3:o:dell:inspiron_7420_firmware::::::::	1
Os	Dell Inspiron 7620 Firmware cpe:2.3:o:dell:inspiron_7620_firmware::::::::	1
Os	Dell Optiplex 3000 Firmware cpe:2.3:o:dell:optiplex_3000_firmware::::::::	1
Os	Dell Optiplex 3000 Thin Client Firmware cpe:2.3:o:dell:optiplex_3000_thin_client_firmware:::::::: cpe:2.3:o:dell:optiplex_3000_thin_client_firmware:-:::::::*	2
Os	Dell Optiplex 5000 Firmware cpe:2.3:o:dell:optiplex_5000_firmware::::::::	1
Os	Dell Optiplex 5400 Firmware cpe:2.3:o:dell:optiplex_5400_firmware::::::::	1
Os	Dell Optiplex 7000 Firmware cpe:2.3:o:dell:optiplex_7000_firmware::::::::	1
Os	Dell Optiplex 7000 Oem Firmware cpe:2.3:o:dell:optiplex_7000_oem_firmware::::::::	1
Os	Dell Optiplex 7400 Firmware cpe:2.3:o:dell:optiplex_7400_firmware::::::::	1
Os	Dell Precision 3460 Small Form Factor Firmware cpe:2.3:o:dell:precision_3460_small_form_factor_firmware:::::::: cpe:2.3:o:dell:precision_3460_small_form_factor_firmware:-:::::::*	2
Os	Dell Precision 3660 Tower Firmware cpe:2.3:o:dell:precision_3660_tower_firmware::::::::	1
Os	Dell Precision 5770 Firmware cpe:2.3:o:dell:precision_5770_firmware:::::::: cpe:2.3:o:dell:precision_5770_firmware:-:::::::*	2
Os	Dell Vostro 3710 Firmware cpe:2.3:o:dell:vostro_3710_firmware:::::::: cpe:2.3:o:dell:vostro_3710_firmware:-:::::::*	2
Os	Dell Vostro 3910 Firmware cpe:2.3:o:dell:vostro_3910_firmware:::::::: cpe:2.3:o:dell:vostro_3910_firmware:-:::::::*	2
Os	Dell Vostro 5320 Firmware cpe:2.3:o:dell:vostro_5320_firmware:::::::: cpe:2.3:o:dell:vostro_5320_firmware:-:::::::*	2
Os	Dell Vostro 5620 Firmware cpe:2.3:o:dell:vostro_5620_firmware:::::::: cpe:2.3:o:dell:vostro_5620_firmware:-:::::::*	2
Os	Dell Vostro 7620 Firmware cpe:2.3:o:dell:vostro_7620_firmware:::::::: cpe:2.3:o:dell:vostro_7620_firmware:-:::::::*	2
Os	Dell Xps 17 9720 Firmware cpe:2.3:o:dell:xps_17_9720_firmware:::::::: cpe:2.3:o:dell:xps_17_9720_firmware:-:::::::*	2

Sources (Detail)

Source	Url
MISC	https://www.dell.com/support/kbdoc/000202196

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-02-15 13:23:39	Multiple Updates
2022-09-16 02:12:57	Multiple Updates
2022-09-13 00:27:13	First insertion

2.3 - CVE-2022-31221

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU