Xps 13 7390 2-in-1 Firmware@* Security Vulnerabilities and Issues — Xps 13 7390 2-in-1 Firmware@* CVE List | Vulners.com

Lucene search

K

DellXps 13 7390 2-in-1 Firmware*

42 matches found

CVE•added 2022/02/09 8:15 p.m.•98 views

CVE-2022-22566

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

7.2CVSS7AI score0.00042EPSS

CVE•added 2022/02/09 8:15 p.m.•97 views

CVE-2022-22567

Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware.

5.1CVSS5AI score0.00022EPSS

CVE•added 2023/08/16 8:15 p.m.•68 views

CVE-2023-28075

Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the syst...

6.9CVSS6.5AI score0.00032EPSS

CVE•added 2022/10/12 8:15 p.m.•60 views

CVE-2022-32483

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6CVSS4.5AI score0.00025EPSS

CVE•added 2022/10/12 8:15 p.m.•59 views

CVE-2022-32489

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2CVSS7.8AI score0.00053EPSS

CVE•added 2023/06/23 11:15 a.m.•58 views

CVE-2023-28036

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2022/10/12 8:15 p.m.•56 views

CVE-2022-32485

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2024/07/02 7:15 a.m.•56 views

CVE-2024-0158

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges

6.7CVSS7.1AI score0.00141EPSS

CVE•added 2023/02/01 6:15 a.m.•55 views

CVE-2022-32482

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6CVSS5AI score0.00018EPSS

CVE•added 2022/10/12 8:15 p.m.•54 views

CVE-2022-32487

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.8CVSS7.8AI score0.00021EPSS

CVE•added 2023/06/23 11:15 a.m.•54 views

CVE-2023-28050

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•52 views

CVE-2023-28034

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•52 views

CVE-2023-28060

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•51 views

CVE-2023-28031

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2022/10/12 8:15 p.m.•48 views

CVE-2022-32488

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2CVSS7.8AI score0.00021EPSS

CVE•added 2022/10/12 8:15 p.m.•48 views

CVE-2022-32493

Dell BIOS contains an Stack-Based Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.8CVSS7.9AI score0.00017EPSS

CVE•added 2023/08/16 8:15 p.m.•47 views

CVE-2023-32453

Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator.

4.6CVSS4.3AI score0.0003EPSS

CVE•added 2023/06/23 11:15 a.m.•46 views

CVE-2023-25938

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00019EPSS

CVE•added 2022/10/12 8:15 p.m.•45 views

CVE-2022-32491

Dell Client BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.

7.8CVSS7.4AI score0.00026EPSS

CVE•added 2023/06/23 11:15 a.m.•44 views

CVE-2023-28026

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•43 views

CVE-2023-28027

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•43 views

CVE-2023-28058

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2022/10/12 8:15 p.m.•42 views

CVE-2022-32484

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6CVSS4.5AI score0.00025EPSS

CVE•added 2024/08/28 6:15 a.m.•42 views

CVE-2023-43078

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

7.3CVSS6.6AI score0.00027EPSS

CVE•added 2023/06/23 10:15 a.m.•41 views

CVE-2023-25937

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•41 views

CVE-2023-28033

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•40 views

CVE-2023-28039

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•40 views

CVE-2023-28052

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•40 views

CVE-2023-28059

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•39 views

CVE-2023-28029

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•39 views

CVE-2023-28042

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 11:15 a.m.•39 views

CVE-2023-28044

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•38 views

CVE-2023-28035

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•36 views

CVE-2023-28028

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•36 views

CVE-2023-28030

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•35 views

CVE-2023-28041

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•35 views

CVE-2023-28054

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•34 views

CVE-2023-28056

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 9:15 a.m.•33 views

CVE-2023-25936

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•33 views

CVE-2023-28040

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•33 views

CVE-2023-28061

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS

CVE•added 2023/06/23 10:15 a.m.•30 views

CVE-2023-28032

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

6.7CVSS6.2AI score0.00018EPSS