Authentication flaw

2023-08-1620:15:00

PRIOn knowledge base

www.prio-n.com

dell bios

authentication

vulnerability

uefi

modification

security-critical

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator.

CPENameOperatorVersion
alienware_m15_r7_firmwarelt1.18.0
alienware_m16_firmwarelt1.10.1
alienware_m18_firmwarelt1.10.1
chengming_3900_firmwarelt1.15.0
chengming_3901_firmwarelt1.15.0
chengming_3910_firmwarelt1.6.0
chengming_3911_firmwarelt1.6.0
g15_5520_firmwarelt1.18.0
g16_7620_firmwarelt1.18.0
g3_3500_firmwarelt1.26.0

Name	Operator	Version
alienware_m15_r7_firmware	lt	1.18.0
alienware_m16_firmware	lt	1.10.1
alienware_m18_firmware	lt	1.10.1
chengming_3900_firmware	lt	1.15.0
chengming_3901_firmware	lt	1.15.0
chengming_3910_firmware	lt	1.6.0
chengming_3911_firmware	lt	1.6.0
g15_5520_firmware	lt	1.18.0
g16_7620_firmware	lt	1.18.0
g3_3500_firmware	lt	1.26.0