Design/Logic Flaw

2022-02-0920:15:00

PRIOn knowledge base

www.prio-n.com

5.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware.

CPENameOperatorVersion
alienware_area_51m_r1_firmwarelt1.16.0
alienware_area_51m_r2_firmwarelt1.11.0
alienware_m15_r3_firmwarelt1.12.0
alienware_m15_r4_firmwarelt1.6.2
alienware_m15_r6_firmwarelt1.6.0
alienware_m15_r6_firmwaregt1.6.0
alienware_m15_r6_firmwarelt1.8.0
alienware_m17_r3_firmwarelt1.12.0
alienware_m17_r4_firmwarelt1.6.2
chengming_3990_firmwarelt1.6.0

Name	Operator	Version
alienware_area_51m_r1_firmware	lt	1.16.0
alienware_area_51m_r2_firmware	lt	1.11.0
alienware_m15_r3_firmware	lt	1.12.0
alienware_m15_r4_firmware	lt	1.6.2
alienware_m15_r6_firmware	lt	1.6.0
alienware_m15_r6_firmware	gt	1.6.0
alienware_m15_r6_firmware	lt	1.8.0
alienware_m17_r3_firmware	lt	1.12.0
alienware_m17_r4_firmware	lt	1.6.2
chengming_3990_firmware	lt	1.6.0