CVE-2021-21572

EPSS 0.04%
Published 24.06.2021 17:15:07
Last modified 21.11.2024 05:48:37
Source security_alert@emc.com
Teams watchlist Login
Open Login

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

Affected products Warnungen 0 Metrics 4 CWE 2 References 4

Data is provided by the National Vulnerability Database (NVD)

Dell ≫ Alienware M15 R6 Firmware Version < 1.3.3

Dell ≫ Alienware M15 R6 Version-

Dell ≫ Chengming 3990 Firmware Version < 1.4.1

Dell ≫ Chengming 3990 Version-

Dell ≫ Chengming 3991 Firmware Version < 1.4.1

Dell ≫ Chengming 3991 Version-

Dell ≫ G15 5510 Firmware Version < 1.4.0

Dell ≫ G15 5510 Version-

Dell ≫ G15 5511 Firmware Version < 1.3.3

Dell ≫ G15 5511 Version-

Dell ≫ G3 3500 Firmware Version <= 1.9.0

Dell ≫ G3 3500 Version-

Dell ≫ G5 5500 Firmware Version < 1.9.0

Dell ≫ G5 5500 Version-

Dell ≫ G7 7500 Firmware Version < 1.9.0

Dell ≫ G7 7500 Version-

Dell ≫ G7 7700 Firmware Version < 1.9.0

Dell ≫ G7 7700 Version-

Dell ≫ Inspiron 14 5418 Firmware Version < 2.1.0_a06

Dell ≫ Inspiron 14 5418 Version-

Dell ≫ Inspiron 15 5518 Firmware Version < 2.1.0_a06

Dell ≫ Inspiron 15 5518 Version-

Dell ≫ Inspiron 15 7510 Firmware Version < 1.0.4

Dell ≫ Inspiron 15 7510 Version-

Dell ≫ Inspiron 3501 Firmware Version < 1.6.0

Dell ≫ Inspiron 3501 Version-

Dell ≫ Inspiron 3880 Firmware Version < 1.4.1

Dell ≫ Inspiron 3880 Version-

Dell ≫ Inspiron 3881 Firmware Version < 1.4.1

Dell ≫ Inspiron 3881 Version-

Dell ≫ Inspiron 3891 Firmware Version < 1.0.11

Dell ≫ Inspiron 3891 Version-

Dell ≫ Inspiron 5300 Firmware Version < 1.7.1

Dell ≫ Inspiron 5300 Version-

Dell ≫ Inspiron 5301 Firmware Version < 1.8.1

Dell ≫ Inspiron 5301 Version-

Dell ≫ Inspiron 5310 Firmware Version < 2.1.0

Dell ≫ Inspiron 5310 Version-

Dell ≫ Inspiron 5400 2-in-1 Firmware Version < 1.7.0

Dell ≫ Inspiron 5400 2-in-1 Version-

Dell ≫ Inspiron 5400 Aio Firmware Version < 1.4.0

Dell ≫ Inspiron 5400 Aio Version-

Dell ≫ Inspiron 5401 Firmware Version < 1.7.2

Dell ≫ Inspiron 5401 Version-

Dell ≫ Inspiron 5401 Aio Firmware Version < 1.4.0

Dell ≫ Inspiron 5401 Aio Version-

Dell ≫ Inspiron 5402 Firmware Version < 1.5.1

Dell ≫ Inspiron 5402 Version-

Dell ≫ Inspiron 5406 2n1 Firmware Version < 1.5.1

Dell ≫ Inspiron 5406 2n1 Version-

Dell ≫ Inspiron 5408 Firmware Version < 1.7.2

Dell ≫ Inspiron 5408 Version-

Dell ≫ Inspiron 5409 Firmware Version < 1.5.1

Dell ≫ Inspiron 5409 Version-

Dell ≫ Inspiron 5410 2-in-1 Firmware Version < 2.1.0

Dell ≫ Inspiron 5410 2-in-1 Version-

Dell ≫ Inspiron 5501 Firmware Version < 1.7.2

Dell ≫ Inspiron 5501 Version-

Dell ≫ Inspiron 5502 Firmware Version < 1.5.1

Dell ≫ Inspiron 5502 Version-

Dell ≫ Inspiron 5508 Firmware Version < 1.7.2

Dell ≫ Inspiron 5508 Version-

Dell ≫ Inspiron 5509 Firmware Version < 1.5.1

Dell ≫ Inspiron 5509 Version-

Dell ≫ Inspiron 7300 Firmware Version < 1.8.1

Dell ≫ Inspiron 7300 Version-

Dell ≫ Inspiron 7300 2-in-1 Firmware Version < 1.3.0

Dell ≫ Inspiron 7300 2-in-1 Version-

Dell ≫ Inspiron 7306 2-in-1 Firmware Version < 1.5.1

Dell ≫ Inspiron 7306 2-in-1 Version-

Dell ≫ Inspiron 7400 Firmware Version < 1.8.1

Dell ≫ Inspiron 7400 Version-

Dell ≫ Inspiron 7500 Firmware Version < 1.8.0

Dell ≫ Inspiron 7500 Version-

Dell ≫ Inspiron 7500 2-in-1 Firmware Version < 1.3.0

Dell ≫ Inspiron 7500 2-in-1 Version-

Dell ≫ Inspiron 7501 Firmware Version < 1.8.0

Dell ≫ Inspiron 7501 Version-

Dell ≫ Inspiron 7506 Firmware Version < 1.5.1

Dell ≫ Inspiron 7506 Version-

Dell ≫ Inspiron 7610 Firmware Version < 1.0.4

Dell ≫ Inspiron 7610 Version-

Dell ≫ Inspiron 7700 Aio Firmware Version < 1.4.0

Dell ≫ Inspiron 7700 Aio Version-

Dell ≫ Inspiron 7706 2-in-1 Firmware Version < 1.5.1

Dell ≫ Inspiron 7706 2-in-1 Version-

Dell ≫ Latitude 3120 Firmware Version < 1.1.0

Dell ≫ Latitude 3120 Version-

Dell ≫ Latitude 3320 Firmware Version < 1.4.0

Dell ≫ Latitude 3320 Version-

Dell ≫ Latitude 3410 Firmware Version < 1.9.0

Dell ≫ Latitude 3410 Version-

Dell ≫ Latitude 3420 Firmware Version < 1.8.0

Dell ≫ Latitude 3420 Version-

Dell ≫ Latitude 3510 Firmware Version < 1.9.0

Dell ≫ Latitude 3510 Version-

Dell ≫ Latitude 3520 Firmware Version < 1.8.0

Dell ≫ Latitude 3520 Version-

Dell ≫ Latitude 5310 Firmware Version < 1.7.0

Dell ≫ Latitude 5310 Version-

Dell ≫ Latitude 5310 2-in-1 Firmware Version < 1.7.0

Dell ≫ Latitude 5310 2-in-1 Version-

Dell ≫ Latitude 5320 Firmware Version < 1.7.1

Dell ≫ Latitude 5320 Version-

Dell ≫ Latitude 5320 2-in-1 Firmware Version < 1.7.1

Dell ≫ Latitude 5320 2-in-1 Version-

Dell ≫ Latitude 5410 Firmware Version < 1.6.0

Dell ≫ Latitude 5410 Version-

Dell ≫ Latitude 5411 Firmware Version < 1.6.0

Dell ≫ Latitude 5411 Version-

Dell ≫ Latitude 5420 Firmware Version < 1.8.0

Dell ≫ Latitude 5420 Version-

Dell ≫ Latitude 5510 Firmware Version < 1.6.0

Dell ≫ Latitude 5510 Version-

Dell ≫ Latitude 5511 Firmware Version < 1.6.0

Dell ≫ Latitude 5511 Version-

Dell ≫ Latitude 5520 Firmware Version < 1.7.1

Dell ≫ Latitude 5520 Version-

Dell ≫ Latitude 5521 Firmware Version < 1.3.0_a03

Dell ≫ Latitude 5521 Version-

Dell ≫ Latitude 7210 2-in-1 Firmware Version < 1.7.0

Dell ≫ Latitude 7210 2-in-1 Version-

Dell ≫ Latitude 7310 Firmware Version < 1.7.0

Dell ≫ Latitude 7310 Version-

Dell ≫ Latitude 7320 Firmware Version < 1.7.1

Dell ≫ Latitude 7320 Version-

Dell ≫ Latitude 7320 Detachable Firmware Version < 1.4.0_a04

Dell ≫ Latitude 7320 Detachable Version-

Dell ≫ Latitude 7410 Firmware Version < 1.7.0

Dell ≫ Latitude 7410 Version-

Dell ≫ Latitude 7420 Firmware Version < 1.7.1

Dell ≫ Latitude 7420 Version-

Dell ≫ Latitude 7520 Firmware Version < 1.7.1

Dell ≫ Latitude 7520 Version-

Dell ≫ Latitude 9410 Firmware Version < 1.7.0

Dell ≫ Latitude 9410 Version-

Dell ≫ Latitude 9420 Firmware Version < 1.4.1

Dell ≫ Latitude 9420 Version-

Dell ≫ Latitude 9510 Firmware Version < 1.6.0

Dell ≫ Latitude 9510 Version-

Dell ≫ Latitude 9520 Firmware Version < 1.5.2

Dell ≫ Latitude 9520 Version-

Dell ≫ Latitude 5421 Firmware Version < 1.3.0_a03

Dell ≫ Latitude 5421 Version-

Dell ≫ Optiplex 3080 Firmware Version < 2.1.1

Dell ≫ Optiplex 3080 Version-

Dell ≫ Optiplex 3090 Uff Firmware Version < 1.2.0

Dell ≫ Optiplex 3090 Uff Version-

Dell ≫ Optiplex 3280 All-in-one Firmware Version < 1.7.0

Dell ≫ Optiplex 3280 All-in-one Version-

Dell ≫ Optiplex 5080 Firmware Version < 1.4.0

Dell ≫ Optiplex 5080 Version-

Dell ≫ Optiplex 5090 Tower Firmware Version < 1.1.35

Dell ≫ Optiplex 5090 Tower Version-

Dell ≫ Optiplex 5490 Aio Firmware Version < 1.3.0

Dell ≫ Optiplex 5490 Aio Version-

Dell ≫ Optiplex 7080 Firmware Version < 1.4.0

Dell ≫ Optiplex 7080 Version-

Dell ≫ Optiplex 7090 Tower Firmware Version < 1.1.35

Dell ≫ Optiplex 7090 Tower Version-

Dell ≫ Optiplex 7090 Uff Firmware Version < 1.2.0

Dell ≫ Optiplex 7090 Uff Version-

Dell ≫ Optiplex 7480 All-in-one Firmware Version < 1.7.0

Dell ≫ Optiplex 7480 All-in-one Version-

Dell ≫ Optiplex 7490 All-in-one Firmware Version < 1.3.0

Dell ≫ Optiplex 7490 All-in-one Version-

Dell ≫ Optiplex 7780 All-in-one Firmware Version < 1.7.0

Dell ≫ Optiplex 7780 All-in-one Version-

Dell ≫ Precision 17 M5750 Firmware Version < 1.8.2

Dell ≫ Precision 17 M5750 Version-

Dell ≫ Precision 3440 Firmware Version < 1.4.0

Dell ≫ Precision 3440 Version-

Dell ≫ Precision 3450 Firmware Version < 1.1.35

Dell ≫ Precision 3450 Version-

Dell ≫ Precision 3550 Firmware Version < 1.6.0

Dell ≫ Precision 3550 Version-

Dell ≫ Precision 3551 Firmware Version < 1.6.0

Dell ≫ Precision 3551 Version-

Dell ≫ Precision 3560 Firmware Version < 1.7.1

Dell ≫ Precision 3560 Version-

Dell ≫ Precision 3561 Firmware Version < 1.3.0_a03

Dell ≫ Precision 3561 Version-

Dell ≫ Precision 3640 Firmware Version < 1.6.2

Dell ≫ Precision 3640 Version-

Dell ≫ Precision 3650 Mt Firmware Version < 1.2.0

Dell ≫ Precision 3650 Mt Version-

Dell ≫ Precision 5550 Firmware Version < 1.8.1

Dell ≫ Precision 5550 Version-

Dell ≫ Precision 5560 Firmware Version < 1.3.2

Dell ≫ Precision 5560 Version-

Dell ≫ Precision 5760 Firmware Version < 1.1.3

Dell ≫ Precision 5760 Version-

Dell ≫ Precision 7550 Firmware Version < 1.8.0

Dell ≫ Precision 7550 Version-

Dell ≫ Precision 7560 Firmware Version < 1.1.2

Dell ≫ Precision 7560 Version-

Dell ≫ Precision 7750 Firmware Version < 1.8.0

Dell ≫ Precision 7750 Version-

Dell ≫ Precision 7760 Firmware Version < 1.1.2

Dell ≫ Precision 7760 Version-

Dell ≫ Vostro 14 5410 Firmware Version < 2.1.0_a06

Dell ≫ Vostro 14 5410 Version-

Dell ≫ Vostro 15 5510 Firmware Version < 2.1.0_a06

Dell ≫ Vostro 15 5510 Version-

Dell ≫ Vostro 15 7510 Firmware Version < 1.0.4

Dell ≫ Vostro 15 7510 Version-

Dell ≫ Vostro 3400 Firmware Version < 1.6.0

Dell ≫ Vostro 3400 Version-

Dell ≫ Vostro 3500 Firmware Version < 1.6.0

Dell ≫ Vostro 3500 Version-

Dell ≫ Vostro 3501 Firmware Version < 1.6.0

Dell ≫ Vostro 3501 Version-

Dell ≫ Vostro 3681 Firmware Version < 2.4.0

Dell ≫ Vostro 3681 Version-

Dell ≫ Vostro 3690 Firmware Version < 1.0.11

Dell ≫ Vostro 3690 Version-

Dell ≫ Vostro 3881 Firmware Version < 2.4.0

Dell ≫ Vostro 3881 Version-

Dell ≫ Vostro 3888 Firmware Version < 2.4.0

Dell ≫ Vostro 3888 Version-

Dell ≫ Vostro 3890 Firmware Version < 1.0.11

Dell ≫ Vostro 3890 Version-

Dell ≫ Vostro 5300 Firmware Version < 1.7.1

Dell ≫ Vostro 5300 Version-

Dell ≫ Vostro 5301 Firmware Version < 1.8.1

Dell ≫ Vostro 5301 Version-

Dell ≫ Vostro 5310 Firmware Version < 2.1.0

Dell ≫ Vostro 5310 Version-

Dell ≫ Vostro 5401 Firmware Version < 1.7.2

Dell ≫ Vostro 5401 Version-

Dell ≫ Vostro 5402 Firmware Version < 1.5.1

Dell ≫ Vostro 5402 Version-

Dell ≫ Vostro 5501 Firmware Version < 1.7.2

Dell ≫ Vostro 5501 Version-

Dell ≫ Vostro 5502 Firmware Version < 1.5.1

Dell ≫ Vostro 5502 Version-

Dell ≫ Vostro 5880 Firmware Version < 1.4.0

Dell ≫ Vostro 5880 Version-

Dell ≫ Vostro 5890 Firmware Version < 1.0.11

Dell ≫ Vostro 5890 Version-

Dell ≫ Vostro 7500 Firmware Version < 1.8.0

Dell ≫ Vostro 7500 Version-

Dell ≫ Xps 13 9305 Firmware Version < 1.0.8

Dell ≫ Xps 13 9305 Version-

Dell ≫ Xps 13 2in1 9310 Firmware Version < 2.3.3

Dell ≫ Xps 13 2in1 9310 Version-

Dell ≫ Xps 13 9310 Firmware Version < 3.0.0

Dell ≫ Xps 13 9310 Version-

Dell ≫ Xps 15 9500 Firmware Version < 1.8.1

Dell ≫ Xps 15 9500 Version-

Dell ≫ Xps 15 9510 Firmware Version < 1.3.2

Dell ≫ Xps 15 9510 Version-

Dell ≫ Xps 17 9700 Firmware Version < 1.8.2

Dell ≫ Xps 17 9700 Version-

Dell ≫ Xps 17 9710 Firmware Version < 1.1.3

Dell ≫ Xps 17 9710 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.08

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	0.8	6	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C
security_alert@emc.com	7.2	0.6	6	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://www.dell.com/support/kbdoc/en-us/000188682

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-21572

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-21572

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-21572

EUVD