EUVD-2026-35789

Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Elevation of Privileges...

EUVD-2011-0355

Malware in sbrugna...

EUVD-2021-8801

Malicious code in bioql PyPI...

EUVD-2022-37359

Malicious code in bioql PyPI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the dell-wmi-sysman module not verifying the validity of a WMI data block, which could lead to invalid...

The vulnerability of the integrated service module of Dell iDRAC in remote access controllers iDRAC, related to the execution of operations outside the buffer in memory, allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the Dell iDRAC Service Module integrated service module controllers in remote access controllers involves an operation that goes beyond the buffer in memory. Exploiting this vulnerability could allow a malicious individual to execute arbitrary code or cause service failures...

kernel: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-smbios-wmi: Fix oops on rmmod dellsmbios initdellsmbioswmi only registers the dellsmbioswmidriver on systems where the Dell WMI interface is supported. While exitdellsmbioswmi unregisters it unconditionally, th...

CVE-2024-28965

Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API if enabled by Admin user from UI. A remote low privileged attacker could potentially exploit this vulnerability, leading to the execution of certain Internal...

Dell BIOS Security Vulnerability

Dell BIOS is embedded software on a small memory chip on a computer motherboard from Dell USA. A security vulnerability exists in Dell BIOS. Attackers have exploited the vulnerability to cause a denial of service on the system...

CVE-2023-28040

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable...

CVE-2022-34404

Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service...

CVE-2022-34404

Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service...

Input validation

Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service...

Dell System Update 信任管理问题漏洞

Dell System Update is an application package from Dell, Inc. that provides application updates. A security vulnerability exists in Dell System Update version 2.0.0 and prior versions, which stems from the inclusion of incorrect certificate validation in the data parser module. No details of the...

CVE-2022-34404

Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service...

CVE-2022-34404

Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. A local attacker with high privileges could potentially exploit this vulnerability, leading to credential theft and/or denial of service...

CVE-2022-34404

Summary (CVE-2022-34404) Dell System Update (versions 2.0.0 and earlier) contains an improper certificate validation flaw in the data parser module. The underlying issue is a certificate validation weakness that could enable a local attacker with high privileges to cause credential theft and/or d...

PT-2023-13382 · Dell · Dell System Update

Name of the Vulnerable Software and Affected Versions: Dell System Update versions 2.0.0 and earlier Description: The issue is related to an Improper Certificate Validation in the data parser module. A local attacker with high privileges could potentially exploit this, leading to credential theft...

RXSA-2023:0334 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: watch queue race condition can lead to privilege escalation CVE-2022-2959 kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB...

CVE-2022-31221

Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order access sensitive state information on the system...