Dell

Optiplex 7090 Tower Firmware

12 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2023-43078

  • EPSS 0.05%
  • Published 28.08.2024 06:15:03
  • Last modified 19.12.2024 15:53:24

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

6.7

CVE-2024-0158

  • EPSS 0.05%
  • Published 02.07.2024 07:15:02
  • Last modified 21.11.2024 08:45:57

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

4.4

CVE-2024-22448

  • EPSS 0.04%
  • Published 10.04.2024 08:15:06
  • Last modified 04.02.2025 17:34:28

Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

4.9

CVE-2023-48674

  • EPSS 0.13%
  • Published 01.03.2024 13:15:07
  • Last modified 31.01.2025 15:53:27

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

8.8

CVE-2022-34403

  • EPSS 0.04%
  • Published 01.02.2023 06:15:08
  • Last modified 21.11.2024 07:09:27

Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM. ...

7.1

CVE-2022-34400

  • EPSS 0.05%
  • Published 01.02.2023 05:15:12
  • Last modified 21.11.2024 07:09:26

Dell BIOS contains a heap buffer overflow vulnerability. A local attacker with admin privileges could potentially exploit this vulnerability to perform an arbitrary write to SMRAM during SMM.

7.2

CVE-2021-36343

  • EPSS 0.04%
  • Published 24.01.2022 20:15:08
  • Last modified 21.11.2024 06:13:34

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.2

CVE-2021-36342

  • EPSS 0.04%
  • Published 24.01.2022 20:15:07
  • Last modified 21.11.2024 06:13:33

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Published 24.06.2021 17:15:08
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...