7.5

CVE-2022-34412

Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service.

Data is provided by the National Vulnerability Database (NVD)
DellR6515 Firmware Version < 2.9.3
   DellR6515 Version-
DellR7515 Firmware Version < 2.9.3
   DellR7515 Version-
DellR6525 Firmware Version < 2.9.3
   DellR6525 Version-
DellR7525 Firmware Version < 2.9.3
   DellR7525 Version-
DellXe8545 Firmware Version < 2.9.4
   DellXe8545 Version-
DellC6525 Firmware
   DellC6525 Version-
DellR6415 Firmware Version < 1.19.0
   DellR6415 Version-
DellR7415 Firmware Version < 1.19.0
   DellR7415 Version-
DellR7425 Firmware Version < 1.19.0
   DellR7425 Version-
DellR750 Firmware Version < 1.8.2
   DellR750 Version-
DellR750xa Firmware Version < 1.8.2
   DellR750xa Version-
DellR650 Firmware Version < 1.8.2
   DellR650 Version-
DellC6520 Firmware Version < 1.8.2
   DellC6520 Version-
DellMx750c Firmware Version < 1.8.2
   DellMx750c Version-
DellR450 Firmware Version < 1.8.2
   DellR450 Version-
DellR550 Firmware Version < 1.8.2
   DellR550 Version-
DellR650xs Firmware Version < 1.8.2
   DellR650xs Version-
DellR750xs Firmware Version < 1.8.2
   DellR750xs Version-
DellT550 Firmware Version < 1.8.2
   DellT550 Version-
DellXr11 Firmware Version < 1.8.2
   DellXr11 Version-
DellXr12 Firmware Version < 1.8.2
   DellXr12 Version-
DellR250 Firmware Version < 1.4.2
   DellR250 Version-
DellR350 Firmware Version < 1.4.2
   DellR350 Version-
DellT150 Firmware Version < 1.4.2
   DellT150 Version-
DellT350 Firmware Version < 1.4.2
   DellT350 Version-
DellR740 Firmware Version < 2.16.1
   DellR740 Version-
DellR740xd Firmware Version < 2.16.1
   DellR740xd Version-
DellR640 Firmware Version < 2.16.1
   DellR640 Version-
DellR940 Firmware Version < 2.16.1
   DellR940 Version-
DellR540 Firmware Version < 2.16.1
   DellR540 Version-
DellR440 Firmware Version < 2.16.1
   DellR440 Version-
DellT440 Firmware Version < 2.16.1
   DellT440 Version-
DellXr2 Firmware Version < 2.16.1
   DellXr2 Version-
DellR740xd2 Firmware Version < 2.16.1
   DellR740xd2 Version-
DellR840 Firmware Version < 2.16.1
   DellR840 Version-
DellR940xa Firmware Version < 2.16.1
   DellR940xa Version-
DellT640 Firmware Version < 2.16.1
   DellT640 Version-
DellC6420 Firmware Version < 2.16.1
   DellC6420 Version-
DellFc640 Firmware Version < 2.16.1
   DellFc640 Version-
DellM640 Firmware Version < 2.16.1
   DellM640 Version-
DellM640p Firmware Version < 2.16.1
   DellM640p Version-
DellMx740c Firmware Version < 2.16.1
   DellMx740c Version-
DellMx840c Firmware Version < 2.16.1
   DellMx840c Version-
DellC4140 Firmware Version < 2.16.1
   DellC4140 Version-
DellDss8440 Firmware Version < 2.16.1
   DellDss8440 Version-
DellT140 Firmware Version < 2.11.1
   DellT140 Version-
DellT340 Firmware Version < 2.11.1
   DellT340 Version-
DellR240 Firmware Version < 2.11.1
   DellR240 Version-
DellR340 Firmware Version < 2.11.1
   DellR340 Version-
DellXe2420 Firmware Version < 2.16.0
   DellXe2420 Version-
DellXe7420 Firmware Version < 2.16.1
   DellXe7420 Version-
DellXe7440 Firmware Version < 2.16.1
   DellXe7440 Version-
DellR730 Firmware Version < 2.16.0
   DellR730 Version-
DellR730xd Firmware Version < 2.16.0
   DellR730xd Version-
DellR630 Firmware Version < 2.16.0
   DellR630 Version-
DellC4130 Firmware Version < 2.16.0
   DellC4130 Version-
DellR930 Firmware Version < 2.16.0
   DellR930 Version-
DellM630 Firmware Version < 2.16.0
   DellM630 Version-
DellM630p Firmware Version < 2.16.0
   DellM630p Version-
DellFc630 Firmware Version < 2.16.0
   DellFc630 Version-
DellFc430 Firmware Version < 2.16.0
   DellFc430 Version-
DellM830 Firmware Version < 2.16.0
   DellM830 Version-
DellM830p Firmware Version < 2.16.0
   DellM830p Version-
DellFc830 Firmware Version < 2.16.0
   DellFc830 Version-
DellT630 Firmware Version < 2.16.0
   DellT630 Version-
DellR530 Firmware Version < 2.16.0
   DellR530 Version-
DellR430 Firmware Version < 2.16.0
   DellR430 Version-
DellT430 Firmware Version < 2.16.0
   DellT430 Version-
DellR830 Firmware Version < 1.16.0
   DellR830 Version-
DellC6320 Firmware Version < 2.16.0
   DellC6320 Version-
DellT130 Firmware Version < 2.16.0
   DellT130 Version-
DellR230 Firmware Version < 2.16.0
   DellR230 Version-
DellT330 Firmware Version < 2.16.0
   DellT330 Version-
DellR330 Firmware Version < 2.16.0
   DellR330 Version-
DellNx430 Firmware Version < 2.16.0
   DellNx430 Version-
DellNx3230 Firmware Version < 2.16.0
   DellNx3230 Version-
DellNx3330 Firmware Version < 2.16.0
   DellNx3330 Version-
DellNx440 Firmware Version < 2.11.1
   DellNx440 Version-
DellNx3240 Firmware Version < 2.16.1
   DellNx3240 Version-
DellNx3340 Firmware Version < 2.16.1
   DellNx3340 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.107
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
security_alert@emc.com 7.5 0.8 6
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.