Описание
Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting the RuntimeServices structure to execute arbitrary code in System Management Mode (SMM).
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.4.1 (исключая)
Одновременно
cpe:2.3:o:dell:inspiron_5675_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:inspiron_5675:-:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00041
Низкий
6.8 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-642
CWE-668
Связанные уязвимости
github
больше 3 лет назад
Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting the RuntimeServices structure to execute arbitrary code in System Management Mode (SMM).
EPSS
Процентиль: 12%
0.00041
Низкий
6.8 Medium
CVSS3
7.2 High
CVSS2
Дефекты
CWE-642
CWE-668