Latitude 5401 Firmware Security Vulnerabilities and Issues — Latitude 5401 Firmware CVE List

Lucene search

DellLatitude 5401 Firmware

56 matches found

CVE•added 2024/02/06 8:15 a.m.•252 views

CVE-2023-28063

Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

6.7CVSS4.5AI score0.00013EPSS

CVE•added 2022/01/24 8:15 p.m.•99 views

CVE-2021-36343

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5CVSS6.8AI score0.0004EPSS

CVE•added 2022/02/09 8:15 p.m.•98 views

CVE-2022-22566

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

7.2CVSS7AI score0.00042EPSS

CVE•added 2022/02/09 8:15 p.m.•97 views

CVE-2022-22567

Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware.

5.1CVSS5AI score0.00022EPSS

CVE•added 2020/02/21 3:15 p.m.•95 views

CVE-2020-5326

Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the system could perform unauthorized changes to the BIOS Setup configuration settin...

6.1CVSS5.3AI score0.00055EPSS

CVE•added 2024/03/01 1:15 p.m.•95 views

CVE-2023-48674

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

6.8CVSS6.4AI score0.00126EPSS

CVE•added 2022/09/06 9:15 p.m.•83 views

CVE-2022-26858

Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

7.8CVSS7.5AI score0.0001EPSS

CVE•added 2020/02/21 3:15 p.m.•74 views

CVE-2020-5324

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged maliciou...

7.1CVSS4.7AI score0.001EPSS

CVE•added 2023/02/01 6:15 a.m.•68 views

CVE-2022-34398

Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system.

7.5CVSS7.1AI score0.00038EPSS

CVE•added 2021/11/12 11:15 p.m.•67 views

CVE-2021-36325

7.5CVSS6.9AI score0.0004EPSS

CVE•added 2022/10/12 8:15 p.m.•60 views

CVE-2022-32483

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6CVSS4.5AI score0.00025EPSS

CVE•added 2022/10/12 8:15 p.m.•59 views

CVE-2022-32489

8.2CVSS7.8AI score0.00053EPSS

CVE•added 2023/06/23 11:15 a.m.•58 views

CVE-2023-28036

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.