← Back

Latitude 7200 Firmware

latitude_7200_firmware

Vendor: Dell • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-36325
1Dell
283Alienware 13 R3 Firmware
Alienware 15 R3 FirmwareAlienware 15 R4 Firmware+280 more
Nov 21, 2024
Nov 12, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2021-36324
1Dell
283Alienware 13 R3 Firmware
Alienware 15 R3 FirmwareAlienware 15 R4 Firmware+280 more
Nov 21, 2024
Nov 12, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2021-36323
1Dell
283Alienware 13 R3 Firmware
Alienware 15 R3 FirmwareAlienware 15 R4 Firmware+280 more
Nov 21, 2024
Nov 12, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2020-5324
1Dell
113G3 15 3590 Firmware
G3 3579 FirmwareG3 3779 Firmware+110 more
Nov 21, 2024
Feb 21, 2020
N/A· v4
4.4 MEDIUM· v3
2.6 LOW· v2
Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administ...Show more
Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.Show less