Dell

Inspiron 7500 2-in-1 Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-26858

  • EPSS 0.04%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:39

Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

7

CVE-2022-26859

  • EPSS 0.03%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:40

Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.

7.8

CVE-2022-26860

  • EPSS 0.05%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:40

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

7.8

CVE-2022-26861

  • EPSS 0.04%
  • Published 06.09.2022 21:15:08
  • Last modified 21.11.2024 06:54:41

Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.

7.2

CVE-2021-36343

  • EPSS 0.04%
  • Published 24.01.2022 20:15:08
  • Last modified 21.11.2024 06:13:34

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.2

CVE-2021-36342

  • EPSS 0.04%
  • Published 24.01.2022 20:15:07
  • Last modified 21.11.2024 06:13:33

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Published 24.06.2021 17:15:08
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...

7.5

CVE-2021-21572

  • EPSS 0.04%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5

CVE-2021-21573

  • EPSS 0.05%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.