Dell

Optiplex 7090 Tower Firmware

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2023-43078

  • EPSS 0.04%
  • Veröffentlicht 28.08.2024 06:15:03
  • Zuletzt bearbeitet 19.12.2024 15:53:24

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

6.7

CVE-2024-0158

  • EPSS 0.05%
  • Veröffentlicht 02.07.2024 07:15:02
  • Zuletzt bearbeitet 21.11.2024 08:45:57

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

4.4

CVE-2024-22448

  • EPSS 0.04%
  • Veröffentlicht 10.04.2024 08:15:06
  • Zuletzt bearbeitet 04.02.2025 17:34:28

Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

4.9

CVE-2023-48674

  • EPSS 0.13%
  • Veröffentlicht 01.03.2024 13:15:07
  • Zuletzt bearbeitet 31.01.2025 15:53:27

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

8.8

CVE-2022-34403

  • EPSS 0.04%
  • Veröffentlicht 01.02.2023 06:15:08
  • Zuletzt bearbeitet 21.11.2024 07:09:27

Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM. ...

7.1

CVE-2022-34400

  • EPSS 0.05%
  • Veröffentlicht 01.02.2023 05:15:12
  • Zuletzt bearbeitet 21.11.2024 07:09:26

Dell BIOS contains a heap buffer overflow vulnerability. A local attacker with admin privileges could potentially exploit this vulnerability to perform an arbitrary write to SMRAM during SMM.

7.2

CVE-2021-36343

  • EPSS 0.04%
  • Veröffentlicht 24.01.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:34

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.2

CVE-2021-36342

  • EPSS 0.04%
  • Veröffentlicht 24.01.2022 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:33

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Veröffentlicht 24.06.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Veröffentlicht 24.06.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...