Stack overflow

2022-09-0621:15:00

PRIOn knowledge base

www.prio-n.com

dell bios

stack-based vulnerability

smi bypass

0.001 Low

EPSS

Percentile

25.8%

JSON

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

CPENameOperatorVersion
alienware_m15_r6_firmwarelt1.8.0
chengming_3980_firmwarelt2.21.0
chengming_3988_firmwarelt1.9.0
chengming_3990_firmwarelt1.8.2
chengming_3991_firmwarelt1.8.2
edge_gateway_3000_firmwarelt1.8.0
edge_gateway_5000_firmwarelt1.18.0
embedded_box_pc_3000_firmwarelt1.14.0
embedded_box_pc_5000_firmwarelt1.15.0
g15_5510_firmwarelt1.8.0

Name	Operator	Version
alienware_m15_r6_firmware	lt	1.8.0
chengming_3980_firmware	lt	2.21.0
chengming_3988_firmware	lt	1.9.0
chengming_3990_firmware	lt	1.8.2
chengming_3991_firmware	lt	1.8.2
edge_gateway_3000_firmware	lt	1.8.0
edge_gateway_5000_firmware	lt	1.18.0
embedded_box_pc_3000_firmware	lt	1.14.0
embedded_box_pc_5000_firmware	lt	1.15.0
g15_5510_firmware	lt	1.8.0

Rows per page:

1-10 of 4001

References

www.dell.com/support/kbdoc/000202194

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for PRION:CVE-2022-26860