CVE-2023-28028
- EPSS 0.02%
- Veröffentlicht 23.06.2023 10:15:09
- Zuletzt bearbeitet 21.11.2024 07:53:58
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2023-25937
- EPSS 0.02%
- Veröffentlicht 23.06.2023 10:15:09
- Zuletzt bearbeitet 21.11.2024 07:50:27
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2023-25936
- EPSS 0.02%
- Veröffentlicht 23.06.2023 09:15:09
- Zuletzt bearbeitet 21.11.2024 07:50:27
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2022-34403
- EPSS 0.04%
- Veröffentlicht 01.02.2023 06:15:08
- Zuletzt bearbeitet 21.11.2024 07:09:27
Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM. ...
CVE-2022-32482
- EPSS 0.02%
- Veröffentlicht 01.02.2023 06:15:08
- Zuletzt bearbeitet 21.11.2024 07:06:25
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2022-34400
- EPSS 0.05%
- Veröffentlicht 01.02.2023 05:15:12
- Zuletzt bearbeitet 21.11.2024 07:09:26
Dell BIOS contains a heap buffer overflow vulnerability. A local attacker with admin privileges could potentially exploit this vulnerability to perform an arbitrary write to SMRAM during SMM.
CVE-2022-26861
- EPSS 0.04%
- Veröffentlicht 06.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:54:41
Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.
CVE-2022-26858
- EPSS 0.04%
- Veröffentlicht 06.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:54:39
Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.
- EPSS 0.03%
- Veröffentlicht 06.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:54:40
Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.
CVE-2022-26860
- EPSS 0.05%
- Veröffentlicht 06.09.2022 21:15:08
- Zuletzt bearbeitet 21.11.2024 06:54:40
Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.