CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
EPSS
Percentile
9.4%
Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability leading to exposure of some UEFI code, leading to arbitrary code execution or escalation of privilege.
Vendor | Product | Version | CPE |
---|---|---|---|
dell | edge_gateway_3200_firmware | * | cpe:2.3:o:dell:edge_gateway_3200_firmware:*:*:*:*:*:*:*:* |
dell | edge_gateway_3200 | - | cpe:2.3:h:dell:edge_gateway_3200:-:*:*:*:*:*:*:* |