Cpg Bios@* Security Vulnerabilities and Issues — Cpg Bios@* CVE List

Lucene search

DellCpg Bios*

9 matches found

CVE•added 2023/02/01 6:15 a.m.•68 views

CVE-2022-34398

Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system.

7.5CVSS7.1AI score0.00038EPSS

CVE•added 2023/02/01 6:15 a.m.•55 views

CVE-2022-32482

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6CVSS5AI score0.00018EPSS

CVE•added 2023/12/22 6:15 p.m.•52 views

CVE-2023-39251

Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system.

6.7CVSS6.3AI score0.00035EPSS

CVE•added 2023/01/18 6:15 a.m.•50 views

CVE-2022-34460

Prior Dell BIOS versions contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.8CVSS7.8AI score0.0002EPSS

CVE•added 2023/02/01 5:15 a.m.•47 views

CVE-2022-34400

Dell BIOS contains a heap buffer overflow vulnerability. A local attacker with admin privileges could potentially exploit this vulnerability to perform an arbitrary write to SMRAM during SMM.

7.1CVSS7AI score0.00047EPSS

CVE•added 2023/01/18 12:15 p.m.•46 views

CVE-2022-34399

Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A malicious user with admin privileges could potentially exploit this vulnerability by sending input larger than expected in order to leak certain sections of SMRAM.

5.1CVSS4AI score0.00043EPSS

CVE•added 2023/12/22 6:15 p.m.•40 views

CVE-2023-43088

Dell Client BIOS contains a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

7.2CVSS6.7AI score0.00051EPSS

CVE•added 2023/01/18 6:15 a.m.•39 views

CVE-2022-34393

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5CVSS7.7AI score0.00024EPSS

CVE•added 2023/02/01 6:15 a.m.•37 views

CVE-2022-34403

Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM.

8.8CVSS8.9AI score0.00035EPSS