Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Inspiron 5410 2-in-1 Firmware Security Vulnerabilities

cve
cve

CVE-2021-21571

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle attack which may lead to a denial of service and ...

6.5CVSS

6.8AI Score

0.002EPSS

2021-06-24 05:15 PM
48
8
cve
cve

CVE-2021-21572

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.0004EPSS

2021-06-24 05:15 PM
39
13
cve
cve

CVE-2021-21573

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.001EPSS

2021-06-24 05:15 PM
36
12
cve
cve

CVE-2021-21574

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.001EPSS

2021-06-24 05:15 PM
47
9
cve
cve

CVE-2022-26858

Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

7.8CVSS

7.5AI Score

0.0004EPSS

2022-09-06 09:15 PM
43
3
cve
cve

CVE-2022-26859

Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.

7CVSS

6.6AI Score

0.0004EPSS

2022-09-06 09:15 PM
21
4
cve
cve

CVE-2022-26860

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

7.8CVSS

7.9AI Score

0.001EPSS

2022-09-06 09:15 PM
22
3
cve
cve

CVE-2022-26861

Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.

7.9CVSS

7.6AI Score

0.0004EPSS

2022-09-06 09:15 PM
26
2