exploitDog

GHSA-xvm4-x6jf-7p35

Опубликовано: 13 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Ссылки

EPSS

Процентиль: 4%

0.00023

Низкий

7.8 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2022-34391

CVSS3: 7.5

nvd

почти 3 года назад

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

EPSS

Процентиль: 4%

0.00023

Низкий

7.8 High

CVSS3

CVE ID