Dell

Xps 13 9305 Firmware

42 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-28032

  • EPSS 0.02%
  • Published 23.06.2023 10:15:09
  • Last modified 21.11.2024 07:54:03

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7

CVE-2023-28033

  • EPSS 0.02%
  • Published 23.06.2023 10:15:09
  • Last modified 21.11.2024 07:54:04

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7

CVE-2023-25936

  • EPSS 0.02%
  • Published 23.06.2023 09:15:09
  • Last modified 21.11.2024 07:50:27

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.1

CVE-2022-32482

  • EPSS 0.02%
  • Published 01.02.2023 06:15:08
  • Last modified 21.11.2024 07:06:25

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

7.8

CVE-2022-26861

  • EPSS 0.04%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:41

Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.

7.8

CVE-2022-26860

  • EPSS 0.05%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:40

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

7

CVE-2022-26859

  • EPSS 0.03%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:40

Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.

7.8

CVE-2022-26858

  • EPSS 0.04%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:39

Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Published 24.06.2021 17:15:08
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...