Latitude 5424 Rugged Firmware

latitude_5424_rugged_firmware

Vendor: Dell • 44 CVEs

CVEs (44)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-26858 1Dell 399Alienware M15 R6 Firmware Chengming 3980 FirmwareChengming 3988 Firmware+396 more Nov 21, 2024 Sep 6, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security co...Show more Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.Show less
CVE-2020-5362 1Dell 354Chengming 3967 Firmware Chengming 3977 FirmwareChengming 3980 Firmware+351 more Nov 21, 2024 Jun 10, 2020 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges...Show more Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges, could bypass the BIOS Administrator authentication to restore BIOS Setup configuration to default values.Show less
CVE-2020-5326 1Dell 174Chengming 3980 Firmware Embedded Box Pc 5000 FirmwareG3 3579 Firmware+171 more Nov 21, 2024 Feb 21, 2020 N/A· v4 5.3 MEDIUM· v3 2.1 LOW· v2 Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the s...Show more Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the system could perform unauthorized changes to the BIOS Setup configuration settings without requiring the BIOS Admin password by selecting the Optimized Defaults option in the pre-boot iRST Manager.Show less
CVE-2020-5324 1Dell 113G3 15 3590 Firmware G3 3579 FirmwareG3 3779 Firmware+110 more Nov 21, 2024 Feb 21, 2020 N/A· v4 4.4 MEDIUM· v3 2.6 LOW· v2 Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administ...Show more Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.Show less

Previous 1 23