Dell

Optiplex 5090 Tower Firmware

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2023-43078

  • EPSS 0.05%
  • Veröffentlicht 28.08.2024 06:15:03
  • Zuletzt bearbeitet 19.12.2024 15:53:24

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

6.7

CVE-2024-0158

  • EPSS 0.05%
  • Veröffentlicht 02.07.2024 07:15:02
  • Zuletzt bearbeitet 21.11.2024 08:45:57

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

4.4

CVE-2024-22448

  • EPSS 0.04%
  • Veröffentlicht 10.04.2024 08:15:06
  • Zuletzt bearbeitet 04.02.2025 17:34:28

Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

4.4

CVE-2023-28063

  • EPSS 0.01%
  • Veröffentlicht 06.02.2024 08:15:46
  • Zuletzt bearbeitet 21.11.2024 07:54:19

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

7.2

CVE-2021-36343

  • EPSS 0.04%
  • Veröffentlicht 24.01.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:34

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.2

CVE-2021-36342

  • EPSS 0.04%
  • Veröffentlicht 24.01.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:33

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Veröffentlicht 24.06.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Veröffentlicht 24.06.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...

7.5

CVE-2021-21572

  • EPSS 0.04%
  • Veröffentlicht 24.06.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5

CVE-2021-21573

  • EPSS 0.05%
  • Veröffentlicht 24.06.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.