CVE-2022-34393
7.5
Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Exploitability: 0.8 / Impact: 6.0
Source: NVD
Description
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected (26)
Products: Dell: G5 Se 5505 Firmware, Inspiron 27 7775 Firmware, Inspiron 3180 Firmware, Inspiron 3185 Firmware, Inspiron 3195 2 In 1 Firmware, Inspiron 3275 Firmware, Inspiron 3475 Firmware, Inspiron 3505 Firmware, Inspiron 3515 Firmware, Inspiron 3585 Firmware, Inspiron 3595 Firmware, Inspiron 3785 Firmware, Inspiron 5405 Firmware, Inspiron 5415 Firmware, Inspiron 5485 Firmware, Inspiron 5485 2 In 1 Firmware, Inspiron 5505 Firmware, Inspiron 5515 Firmware, Inspiron 5585 Firmware, Inspiron 7375 Firmware, Inspiron 7405 2 In 1 Firmware, Inspiron 7415 Firmware, Vostro 3405 Firmware, Vostro 3515 Firmware, Vostro 5415 Firmware, Vostro 5515 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.1 |
| Running on/with | Platform Versions |
|---|---|
Dell G5 Se 5505 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.17.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 27 7775 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3180 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3185 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3195 2 In 1 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3275 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3475 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.8.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3505 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3515 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3585 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3595 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 3785 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.8.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5405 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5415 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.10.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5485 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.10.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5485 2 In 1 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.8.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5505 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5515 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.10.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 5585 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 7375 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.9.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 7405 2 In 1 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Inspiron 7415 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.8.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Vostro 3405 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Vostro 3515 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Vostro 5415 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Vostro 5515 | All versions |
References (2)
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.