Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Optiplex 5090 Tower Firmware Security Vulnerabilities

cve
cve

CVE-2021-21571

Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability using a person-in-the-middle attack which may lead to a denial of service and ...

6.5CVSS

6.8AI Score

0.002EPSS

2021-06-24 05:15 PM
54
8
cve
cve

CVE-2021-21572

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.0004EPSS

2021-06-24 05:15 PM
44
13
cve
cve

CVE-2021-21573

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.001EPSS

2021-06-24 05:15 PM
43
12
cve
cve

CVE-2021-21574

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

7.5CVSS

7.7AI Score

0.001EPSS

2021-06-24 05:15 PM
51
9
cve
cve

CVE-2021-36342

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5CVSS

6.8AI Score

0.0004EPSS

2022-01-24 08:15 PM
41
cve
cve

CVE-2021-36343

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5CVSS

6.8AI Score

0.0004EPSS

2022-01-24 08:15 PM
82
cve
cve

CVE-2023-28063

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

6.7CVSS

4.5AI Score

0.0004EPSS

2024-02-06 08:15 AM
18
cve
cve

CVE-2023-43078

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

6.7CVSS

6.6AI Score

0.0004EPSS

2024-08-28 06:15 AM
28
cve
cve

CVE-2024-0158

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

6.7CVSS

7.1AI Score

0.0004EPSS

2024-07-02 07:15 AM
31