← Back

Latitude 7202 Firmware

latitude_7202_firmware

Vendor: Dell • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-5348
1Dell
1Latitude 7202 Firmware
Nov 21, 2024
Apr 4, 2020
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting the E...Show more
Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting the EFI_BOOT_SERVICES structure to execute arbitrary code in system management mode.Show less
CVE-2020-5326
1Dell
174Chengming 3980 Firmware
Embedded Box Pc 5000 FirmwareG3 3579 Firmware+171 more
Nov 21, 2024
Feb 21, 2020
N/A· v4
5.3 MEDIUM· v3
2.1 LOW· v2
Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the s...Show more
Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the system could perform unauthorized changes to the BIOS Setup configuration settings without requiring the BIOS Admin password by selecting the Optimized Defaults option in the pre-boot iRST Manager.Show less
CVE-2019-3717
1Dell
241Chengming 3967 Firmware
Chengming 3977 FirmwareChengming 3980 Firmware+238 more
Nov 21, 2024
Aug 5, 2019
N/A· v4
6.8 MEDIUM· v3
7.2 HIGH· v2
Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure Boot restrictions to...Show more
Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure Boot restrictions to run unsigned and untrusted code on expansion cards installed in the system during platform boot. Refer to https://www.dell.com/support/article/us/en/04/sln317683/dsa-2019-043-dell-client-improper-access-control-vulnerability?lang=en for versions affected by this vulnerability.Show less