5 matches found
CVE-2020-5326
Dell Client platforms are affected by a BIOS Setup authentication bypass in the pre-boot iRST Manager menu. The issue allows an attacker with physical access to change BIOS Setup configuration by selecting Optimized Defaults without entering the BIOS Admin password. Root cause and affected compon...
CVE-2021-36325
CVE-2021-36325 affects Dell BIOS embedded firmware. A Dell BIOS input-validation error allows a local authenticated attacker to use an SMI to execute arbitrary code in SMRAM. Reported impact includes high confidentiality, integrity, and availability concerns; exploitation details are not provided...
CVE-2019-3717
CVE-2019-3717 affects Dell Client Commercial and Consumer platforms. The vulnerability is an improper access control that could allow an unauthenticated attacker with physical access to bypass Secure Boot and run unsigned/untrusted code on expansion cards during platform boot. Impact concerns: co...
CVE-2021-36323
Dell BIOS contains an input validation vulnerability that can allow a local authenticated attacker to gain arbitrary code execution in SMRAM by abusing System Management Interrupts (SMI). Affected component is Dell BIOS (embedded firmware on a Dell motherboard memory chip). The root cause is impr...
CVE-2021-36324
CVE-2021-36324 affects Dell BIOS. The issue is an improper input validation in Dell BIOS, enabling a local authenticated attacker to use an SMI to execute arbitrary code in SMRAM. Impact is described as high (confidentiality, integrity, and availability affected) with local attack vector and high...