Authorization

2020-06-1021:15:00

PRIOn knowledge base

www.prio-n.com

4.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges, could bypass the BIOS Administrator authentication to restore BIOS Setup configuration to default values.

CPENameOperatorVersion
chengming_3967_firmwarelt1.9.0
chengming_3977_firmwarelt1.9.0
chengming_3980_firmwarelt2.16.0
chengming_3988_firmwarelt1.3.0
chengming_3990_firmwarelt1.1.3
chengming_3991_firmwarelt1.1.3
embedded_box_pc_5000_firmwarelt1.8.0
g3_15_3500_firmwarelt1.2.1
g3_15_3590_firmwarelt1.11.0
g3_3579_firmwarelt1.13.0

Name	Operator	Version
chengming_3967_firmware	lt	1.9.0
chengming_3977_firmware	lt	1.9.0
chengming_3980_firmware	lt	2.16.0
chengming_3988_firmware	lt	1.3.0
chengming_3990_firmware	lt	1.1.3
chengming_3991_firmware	lt	1.1.3
embedded_box_pc_5000_firmware	lt	1.8.0
g3_15_3500_firmware	lt	1.2.1
g3_15_3590_firmware	lt	1.11.0
g3_3579_firmware	lt	1.13.0

Rows per page:

1-10 of 3531

References

www.dell.com/support/article/SLN321726