Dell

G7 7700 Firmware

12 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2023-43078

  • EPSS 0.04%
  • Published 28.08.2024 06:15:03
  • Last modified 19.12.2024 15:53:24

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

6.7

CVE-2024-0158

  • EPSS 0.05%
  • Published 02.07.2024 07:15:02
  • Last modified 21.11.2024 08:45:57

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

4.4

CVE-2024-28970

  • EPSS 0.04%
  • Published 12.06.2024 07:15:51
  • Last modified 21.11.2024 09:07:17

Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial of service.

6.8

CVE-2024-0160

  • EPSS 0.03%
  • Published 12.06.2024 07:15:50
  • Last modified 21.11.2024 08:45:58

Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS.

4.4

CVE-2024-22448

  • EPSS 0.04%
  • Published 10.04.2024 08:15:06
  • Last modified 04.02.2025 17:34:28

Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

7.2

CVE-2022-22566

  • EPSS 0.04%
  • Published 09.02.2022 20:15:12
  • Last modified 21.11.2024 06:47:02

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary co...

5.1

CVE-2022-22567

  • EPSS 0.02%
  • Published 09.02.2022 20:15:12
  • Last modified 21.11.2024 06:47:02

Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware.

7.2

CVE-2021-36342

  • EPSS 0.04%
  • Published 24.01.2022 20:15:07
  • Last modified 21.11.2024 06:13:33

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVE-2021-21574

  • EPSS 0.09%
  • Published 24.06.2021 17:15:08
  • Last modified 21.11.2024 05:48:37

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

6.5

CVE-2021-21571

  • EPSS 0.47%
  • Published 24.06.2021 17:15:07
  • Last modified 21.11.2024 05:48:37

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle ...