6.7 - CVE-2022-34377

Executive Summary

Informations
Name	CVE-2022-34377	First vendor Publication	2023-02-10
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score	6.7
Base Score	6.7	Environmental Score	6.7
impact SubScore	5.9	Temporal Score	6.7
Exploitabality Sub Score	0.8

Attack Vector	Local	Attack Complexity	Low
Privileges Required	High	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score	N/A	Attack Range	N/A
Cvss Impact Score	N/A	Attack Complexity	N/A
Cvss Expoit Score	N/A	Authentication	N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34377

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Type	Description	Count
Os	Dell C4130 Firmware cpe:2.3:o:dell:c4130_firmware::::::::	1
Os	Dell C4140 Firmware cpe:2.3:o:dell:c4140_firmware::::::::	1
Os	Dell C6320 Firmware cpe:2.3:o:dell:c6320_firmware::::::::	1
Os	Dell C6420 Firmware cpe:2.3:o:dell:c6420_firmware::::::::	1
Os	Dell C6520 Firmware cpe:2.3:o:dell:c6520_firmware::::::::	1
Os	Dell C6525 Firmware cpe:2.3:o:dell:c6525_firmware::::::::	1
Os	Dell Dss8440 Firmware cpe:2.3:o:dell:dss8440_firmware::::::::	1
Os	Dell Fc430 Firmware cpe:2.3:o:dell:fc430_firmware::::::::	1
Os	Dell Fc630 Firmware cpe:2.3:o:dell:fc630_firmware::::::::	1
Os	Dell Fc640 Firmware cpe:2.3:o:dell:fc640_firmware::::::::	1
Os	Dell Fc830 Firmware cpe:2.3:o:dell:fc830_firmware::::::::	1
Os	Dell M630 Firmware cpe:2.3:o:dell:m630_firmware::::::::	1
Os	Dell M630P Firmware cpe:2.3:o:dell:m630p_firmware::::::::	1
Os	Dell M640 Firmware cpe:2.3:o:dell:m640_firmware::::::::	1
Os	Dell M640P Firmware cpe:2.3:o:dell:m640p_firmware::::::::	1
Os	Dell M830 Firmware cpe:2.3:o:dell:m830_firmware::::::::	1
Os	Dell M830P Firmware cpe:2.3:o:dell:m830p_firmware::::::::	1
Os	Dell Mx740C Firmware cpe:2.3:o:dell:mx740c_firmware::::::::	1
Os	Dell Mx750C Firmware cpe:2.3:o:dell:mx750c_firmware::::::::	1
Os	Dell Mx840C Firmware cpe:2.3:o:dell:mx840c_firmware::::::::	1
Os	Dell Nx3230 Firmware cpe:2.3:o:dell:nx3230_firmware::::::::	1
Os	Dell Nx3240 Firmware cpe:2.3:o:dell:nx3240_firmware::::::::	1
Os	Dell Nx3330 Firmware cpe:2.3:o:dell:nx3330_firmware::::::::	1
Os	Dell Nx3340 Firmware cpe:2.3:o:dell:nx3340_firmware::::::::	1
Os	Dell Nx430 Firmware cpe:2.3:o:dell:nx430_firmware::::::::	1
Os	Dell Nx440 Firmware cpe:2.3:o:dell:nx440_firmware::::::::	1
Os	Dell R230 Firmware cpe:2.3:o:dell:r230_firmware::::::::	1
Os	Dell R240 Firmware cpe:2.3:o:dell:r240_firmware::::::::	1
Os	Dell R250 Firmware cpe:2.3:o:dell:r250_firmware::::::::	1
Os	Dell R330 Firmware cpe:2.3:o:dell:r330_firmware::::::::	1
Os	Dell R340 Firmware cpe:2.3:o:dell:r340_firmware::::::::	1
Os	Dell R350 Firmware cpe:2.3:o:dell:r350_firmware::::::::	1
Os	Dell R430 Firmware cpe:2.3:o:dell:r430_firmware::::::::	1
Os	Dell R440 Firmware cpe:2.3:o:dell:r440_firmware::::::::	1
Os	Dell R450 Firmware cpe:2.3:o:dell:r450_firmware::::::::	1
Os	Dell R530 Firmware cpe:2.3:o:dell:r530_firmware::::::::	1
Os	Dell R540 Firmware cpe:2.3:o:dell:r540_firmware::::::::	1
Os	Dell R550 Firmware cpe:2.3:o:dell:r550_firmware::::::::	1
Os	Dell R630 Firmware cpe:2.3:o:dell:r630_firmware::::::::	1
Os	Dell R640 Firmware cpe:2.3:o:dell:r640_firmware::::::::	1
Os	Dell R6415 Firmware cpe:2.3:o:dell:r6415_firmware::::::::	1
Os	Dell R650 Firmware cpe:2.3:o:dell:r650_firmware::::::::	1
Os	Dell R650Xs Firmware cpe:2.3:o:dell:r650xs_firmware::::::::	1
Os	Dell R6515 Firmware cpe:2.3:o:dell:r6515_firmware::::::::	1
Os	Dell R6525 Firmware cpe:2.3:o:dell:r6525_firmware::::::::	1
Os	Dell R730 Firmware cpe:2.3:o:dell:r730_firmware::::::::	1
Os	Dell R730Xd Firmware cpe:2.3:o:dell:r730xd_firmware::::::::	1
Os	Dell R740 Firmware cpe:2.3:o:dell:r740_firmware::::::::	1
Os	Dell R740Xd Firmware cpe:2.3:o:dell:r740xd_firmware::::::::	1
Os	Dell R740Xd2 Firmware cpe:2.3:o:dell:r740xd2_firmware::::::::	1
Os	Dell R7415 Firmware cpe:2.3:o:dell:r7415_firmware::::::::	1
Os	Dell R7425 Firmware cpe:2.3:o:dell:r7425_firmware::::::::	1
Os	Dell R750 Firmware cpe:2.3:o:dell:r750_firmware::::::::	1
Os	Dell R750Xa Firmware cpe:2.3:o:dell:r750xa_firmware::::::::	1
Os	Dell R750Xs Firmware cpe:2.3:o:dell:r750xs_firmware::::::::	1
Os	Dell R7515 Firmware cpe:2.3:o:dell:r7515_firmware::::::::	1
Os	Dell R7525 Firmware cpe:2.3:o:dell:r7525_firmware::::::::	1
Os	Dell R830 Firmware cpe:2.3:o:dell:r830_firmware::::::::	1
Os	Dell R840 Firmware cpe:2.3:o:dell:r840_firmware::::::::	1
Os	Dell R930 Firmware cpe:2.3:o:dell:r930_firmware::::::::	1
Os	Dell R940 Firmware cpe:2.3:o:dell:r940_firmware::::::::	1
Os	Dell R940Xa Firmware cpe:2.3:o:dell:r940xa_firmware::::::::	1
Os	Dell T130 Firmware cpe:2.3:o:dell:t130_firmware::::::::	1
Os	Dell T140 Firmware cpe:2.3:o:dell:t140_firmware::::::::	1
Os	Dell T150 Firmware cpe:2.3:o:dell:t150_firmware::::::::	1
Os	Dell T330 Firmware cpe:2.3:o:dell:t330_firmware::::::::	1
Os	Dell T340 Firmware cpe:2.3:o:dell:t340_firmware::::::::	1
Os	Dell T350 Firmware cpe:2.3:o:dell:t350_firmware::::::::	1
Os	Dell T430 Firmware cpe:2.3:o:dell:t430_firmware::::::::	1
Os	Dell T440 Firmware cpe:2.3:o:dell:t440_firmware::::::::	1
Os	Dell T550 Firmware cpe:2.3:o:dell:t550_firmware::::::::	1
Os	Dell T630 Firmware cpe:2.3:o:dell:t630_firmware::::::::	1
Os	Dell T640 Firmware cpe:2.3:o:dell:t640_firmware::::::::	1
Os	Dell Xe2420 Firmware cpe:2.3:o:dell:xe2420_firmware::::::::	1
Os	Dell Xe7420 Firmware cpe:2.3:o:dell:xe7420_firmware::::::::	1
Os	Dell Xe7440 Firmware cpe:2.3:o:dell:xe7440_firmware::::::::	1
Os	Dell Xe8545 Firmware cpe:2.3:o:dell:xe8545_firmware::::::::	1
Os	Dell Xr11 Firmware cpe:2.3:o:dell:xr11_firmware::::::::	1
Os	Dell Xr12 Firmware cpe:2.3:o:dell:xr12_firmware::::::::	1
Os	Dell Xr2 Firmware cpe:2.3:o:dell:xr2_firmware::::::::	1

OpenVAS Exploits

Date	Description
2010-03-30	Name : Debian Security Advisory DSA 2022-1 (mediawiki) File : nvt/deb_2022_1.nasl

Nessus® Vulnerability Scanner

Date	Description
2010-03-25	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2022.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

https://www.dell.com/support/kbdoc/en-us/000206296/dsa-2022-204-dell-poweredg...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 14:13:19	Multiple Updates
2023-11-07 21:30:15	Multiple Updates
2023-03-16 17:27:35	Multiple Updates
2023-02-22 21:27:19	Multiple Updates
2023-02-13 00:27:17	Multiple Updates
2023-02-11 17:27:12	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	80
Sources(s)	1
Openvas Exploit(s)	1
Nessus® Exploit(s)	1

	Related
5	DSA-2022
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

6.7 - CVE-2022-34377

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

OpenVAS Exploits

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU