Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2020-5361

Summary
Assigner-dell
Assigner Org ID-c550e75a-17ff-4988-97f0-544cde3820fe
Published At-04 Jan, 2021 | 21:15
Updated At-16 Sep, 2024 | 23:06
Rejected At-
Credits

Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools, which are not authorized by Dell, can be used by a physically present attacker to reset BIOS passwords and BIOS-managed Hard Disk Drive (HDD) passwords. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to bypass security restrictions for BIOS Setup configuration, HDD access and BIOS pre-boot authentication.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:dell
Assigner Org ID:c550e75a-17ff-4988-97f0-544cde3820fe
Published At:04 Jan, 2021 | 21:15
Updated At:16 Sep, 2024 | 23:06
Rejected At:
▼CVE Numbering Authority (CNA)

Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools, which are not authorized by Dell, can be used by a physically present attacker to reset BIOS passwords and BIOS-managed Hard Disk Drive (HDD) passwords. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to bypass security restrictions for BIOS Setup configuration, HDD access and BIOS pre-boot authentication.

Affected Products
Vendor
Dell Inc.Dell
Product
CPG BIOS
Versions
Affected
  • From unspecified before All (custom)
Problem Types
TypeCWE IDDescription
CWECWE-640CWE-640: Weak Password Recovery Mechanism for Forgotten Password
Type: CWE
CWE ID: CWE-640
Description: CWE-640: Weak Password Recovery Mechanism for Forgotten Password
Metrics
VersionBase scoreBase severityVector
3.15.1MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Version: 3.1
Base score: 5.1
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
x_refsource_MISC
Hyperlink: https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
x_refsource_MISC
x_transferred
Hyperlink: https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
Resource:
x_refsource_MISC
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:security_alert@emc.com
Published At:04 Jan, 2021 | 22:15
Updated At:29 Jan, 2021 | 17:35

Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools, which are not authorized by Dell, can be used by a physically present attacker to reset BIOS passwords and BIOS-managed Hard Disk Drive (HDD) passwords. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to bypass security restrictions for BIOS Setup configuration, HDD access and BIOS pre-boot authentication.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.6HIGH
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Secondary3.15.1MEDIUM
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Primary2.07.2HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Type: Primary
Version: 3.1
Base score: 7.6
Base severity: HIGH
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 5.1
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Type: Primary
Version: 2.0
Base score: 7.2
Base severity: HIGH
Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
CPE Matches

Dell Inc.
dell
>>cpg_bios>>*
cpe:2.3:o:dell:cpg_bios:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-640Primarynvd@nist.gov
CWE-640Secondarysecurity_alert@emc.com
CWE ID: CWE-640
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-640
Type: Secondary
Source: security_alert@emc.com
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerabilitysecurity_alert@emc.com
Vendor Advisory
Hyperlink: https://www.dell.com/support/kbdoc/en-us/000180741/dsa-2020-119-dell-client-products-unauthorized-bios-password-reset-tool-vulnerability
Source: security_alert@emc.com
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

80Records found

CVE-2018-15782
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.7||HIGH
EPSS-0.42% / 34.04%
||
7 Day CHG~0.00%
Published-16 Jan, 2019 | 20:00
Updated-17 Sep, 2024 | 03:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
DSA-2018-226: RSA® Authentication Manager Relative Path Traversal Vulnerability

The Quick Setup component of RSA Authentication Manager versions prior to 8.4 is vulnerable to a relative path traversal vulnerability. A local attacker could potentially provide an administrator with a crafted license that if used during the quick setup deployment of the initial RSA Authentication Manager system, could allow the attacker unauthorized access to that system.

Action-Not Available
Vendor-Dell Inc.RSA Security LLC
Product-authentication_managerRSA Authentication Manager
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVE-2018-15778
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-8.8||HIGH
EPSS-0.37% / 29.30%
||
7 Day CHG~0.00%
Published-04 Feb, 2019 | 22:00
Updated-17 Sep, 2024 | 02:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
DSA-2019-019: Dell Networking OS10 OS Command Injection Vulnerability

Dell OS10 versions prior to 10.4.2.1 contain a vulnerability caused by lack of proper input validation on the command-line interface (CLI).

Action-Not Available
Vendor-Dell Inc.
Product-networking_os10Dell Networking OS10
CWE ID-CWE-20
Improper Input Validation
CVE-2016-8216
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.7||MEDIUM
EPSS-0.81% / 52.48%
||
7 Day CHG~0.00%
Published-03 Feb, 2017 | 07:24
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10 has a command injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.

Action-Not Available
Vendor-n/aDell Inc.
Product-emc_data_domain_osEMC Data Domain DD OS EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10
CVE-2022-22566
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.9||MEDIUM
EPSS-0.26% / 17.04%
||
7 Day CHG+0.01%
Published-09 Feb, 2022 | 20:00
Updated-17 Sep, 2024 | 01:45
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

Action-Not Available
Vendor-Dell Inc.
Product-latitude_5401vostro_5391_firmwarexps_15_9510_firmwareinspiron_5583inspiron_7500_firmwareinspiron_7300_firmwarelatitude_3520precision_3541_firmwareinspiron_5591_2-in-1g5_5500precision_3561_firmwareinspiron_7506_2-in-1xps_17_9710_firmwareg7_7500precision_7560inspiron_5590_firmwarevostro_3881_firmwarevostro_3490_firmwarelatitude_7200_2-in-1latitude_5511_firmwareinspiron_5493precision_3550vostro_3888inspiron_3891_firmwareoptiplex_3090_ultra_firmwareinspiron_7490vostro_3888_firmwarexps_13_7390_2-in-1_firmwarelatitude_7420_firmwareprecision_7540inspiron_5501vostro_5501_firmwarelatitude_3310_2-in-1inspiron_5390_firmwarelatitude_9420inspiron_5490_firmwareoptiplex_3090_ultraalienware_area_51m_r1_firmwareoptiplex_5080inspiron_5400_aioinspiron_5502latitude_5511inspiron_7501precision_5550inspiron_7300_2-in-1xps_17_9700inspiron_7390_firmwarexps_7590alienware_m17_r3_firmwarelatitude_5300vostro_3400inspiron_3891vostro_5310g3_3500latitude_9410_firmwarevostro_7590optiplex_7090_firmwareinspiron_7300_2-in-1_firmwareinspiron_7706_2-in-1_firmwarelatitude_5300_2-in-1g15_5511_firmwarelatitude_7410_firmwarelatitude_7320latitude_7300optiplex_7090latitude_5310_2-in-1inspiron_5490_aio_firmwareinspiron_5491_aiolatitude_3420inspiron_14_5418_firmwareg5_5500_firmwarelatitude_rugged_7330_firmwarevostro_5491_firmwarelatitude_5500_firmwarelatitude_5410_firmwarelatitude_5310_2-in-1_firmwarexps_13_7390inspiron_7490_firmwareinspiron_5409latitude_3400_firmwarevostro_3890latitude_7400latitude_3510precision_3560_firmwareinspiron_5584precision_3520vostro_5401_firmwareinspiron_3880_firmwareinspiron_3511_firmwareinspiron_5310_firmwareinspiron_5501_firmwareoptiplex_5080_firmwareinspiron_14_5410inspiron_5493_firmwarelatitude_3400xps_17_9700_firmwarelatitude_3420_firmwarealienware_m15_r3g5_5000vostro_3590vostro_5390inspiron_5491_2-in-1_firmwareinspiron_15_5510vostro_5590_firmwareinspiron_7506_2-in-1_firmwarealienware_m17_r4_firmwarelatitude_7320_detachable_firmwarelatitude_9410inspiron_3790optiplex_7080_firmwareinspiron_5491_aio_firmwarelatitude_5310vostro_5391inspiron_5494latitude_3301inspiron_5594optiplex_7090_ultra_firmwarexps_13_9300xps_15_9500latitude_5500precision_3450inspiron_5508_firmwareprecision_7550_firmwarelatitude_3500_firmwarechengming_3991vostro_5591precision_5560inspiron_5400_aio_firmwareinspiron_7501_firmwareinspiron_7500_2-in-1_blackg15_5510_firmwareinspiron_3881_firmwarevostro_7510_firmwarelatitude_5521g3_3590vostro_7510optiplex_5480_all-in-one_firmwareinspiron_7791precision_3540latitude_5501inspiron_7510_firmwarelatitude_7400_firmwarevostro_3501latitude_7520inspiron_7500_2-in-1_black_firmwareprecision_3450_firmwarechengming_3990inspiron_5301latitude_3310g7_7700_firmwarevostro_5880_firmwarexps_17_9710inspiron_3493vostro_5410alienware_area_51m_r1inspiron_5402precision_7540_firmwareprecision_5750_firmwareinspiron_7700_aiovostro_3401_firmwareinspiron_7391_firmwarevostro_3881vostro_5401inspiron_5593latitude_5420_firmwareprecision_3561vostro_5390_firmwarelatitude_5520latitude_3410_firmwareinspiron_7510vostro_5300inspiron_7400_firmwareoptiplex_7490_aio_firmwareinspiron_3493_firmwareprecision_3530_firmwarelatitude_3320vostro_5301inspiron_5583_firmwarexps_13_9310_2-in-1_firmwarexps_15_9510inspiron_3590latitude_7210_2-in-1inspiron_7590vostro_5880precision_7750alienware_m15_r6_firmwarelatitude_3301_firmwarelatitude_3320_firmwarelatitude_rugged_7220_extreme_firmwarelatitude_9520_firmwareprecision_5560_firmwarevostro_3690_firmwareoptiplex_7080g15_5510latitude_5520_firmwareoptiplex_5090optiplex_5480_all-in-oneinspiron_15_5518inspiron_5591_2-in-1_firmwarealienware_area_51m_r2_firmwarevostro_7500_firmwarelatitude_5400alienware_m15_r4_firmwarelatitude_5410precision_3541xps_8940inspiron_5310vostro_5510_firmwareprecision_3551latitude_5401_firmwarealienware_m17_r3vostro_5491inspiron_7610latitude_rugged_7330vostro_5301_firmwarelatitude_7300_firmwarelatitude_5421vostro_5890latitude_9420_firmwarelatitude_5510inspiron_5400_2-in-1inspiron_5401_aio_firmwarelatitude_5400_firmwareinspiron_7610_firmwarevostro_5300_firmwareoptiplex_5090_firmwarevostro_3501_firmwareinspiron_5400_2-in-1_firmwareinspiron_7391inspiron_3593_firmwarealienware_m17_r4optiplex_7780_all-in-one_firmwareprecision_3440inspiron_5494_firmwareprecision_3440_firmwarevostro_5402optiplex_7090_ultrag5_5000_firmwareprecision_3640_firmwarelatitude_3310_2-in-1_firmwarealienware_m15_r3_firmwarelatitude_5320precision_3550_firmwarelatitude_7410latitude_3310_firmwareinspiron_3590_firmwarelatitude_5501_firmwarexps_13_7390_2-in-1vostro_3690optiplex_3280_all-in-one_firmwarexps_15_9500_firmwarelatitude_5411inspiron_5300_firmwareprecision_7760vostro_7500vostro_3500_firmwareinspiron_7306_2-in-1_firmwareinspiron_7590_firmwareinspiron_7791_firmwareprecision_7740_firmwarelatitude_7320_detachablelatitude_9520latitude_rugged_7220_extremeinspiron_5509vostro_3590_firmwareinspiron_5406_2-in-1_firmwareinspiron_5498vostro_3681inspiron_7500_2-in-1_silver_firmwarelatitude_7420inspiron_7591_firmwareinspiron_5300inspiron_7706_2-in-1latitude_7400_2-in-1_firmwareinspiron_5508precision_5550_firmwareinspiron_5491_2-in-1precision_3530g7_7500_firmwarelatitude_5411_firmwarelatitude_3510_firmwarelatitude_3120_firmwareinspiron_5590vostro_5490inspiron_3593inspiron_15_5518_firmwareprecision_7740inspiron_5301_firmwareinspiron_5408_firmwarelatitude_7310_firmwareinspiron_5498_firmwareprecision_5540vostro_5490_firmwareinspiron_7306_2-in-1xps_13_9310_firmwareinspiron_3790_firmwarexps_13_7390_firmwarelatitude_9510optiplex_3280_all-in-onelatitude_7520_firmwareprecision_5760_firmwarelatitude_5420inspiron_7300inspiron_3793_firmwareinspiron_5402_firmwarevostro_3681_firmwareinspiron_7390vostro_5890_firmwareprecision_7560_firmwarelatitude_9510_firmwareinspiron_5406_2-in-1precision_3650latitude_7400_2-in-1optiplex_5490_aio_firmwareprecision_7760_firmwareoptiplex_7070_ufflatitude_5300_2-in-1_firmwarevostro_5510inspiron_3511inspiron_3490latitude_7210_2-in-1_firmwarelatitude_rugged_5430_firmwarexps_13_9310inspiron_5410latitude_5510_firmwareg7_7700vostro_5502vostro_3510_firmwareoptiplex_7490_aioinspiron_5410_firmwareoptiplex_7780_all-in-oneinspiron_15_5510_firmwareinspiron_5490inspiron_3501_firmwareinspiron_5408vostro_5410_firmwarevostro_5502_firmwareprecision_3540_firmwarelatitude_5300_firmwareinspiron_3880g3_3500_firmwareoptiplex_3080_firmwarelatitude_3410precision_7550vostro_5402_firmwarevostro_3490latitude_rugged_7220inspiron_5391inspiron_3881inspiron_5598xps_13_9380latitude_5320_firmwarexps_7590_firmwareoptiplex_3080alienware_area_51m_r2inspiron_7500_2-in-1_silverinspiron_3501latitude_5310_firmwarelatitude_3500xps_13_9300_firmwareprecision_5750alienware_m15_r4inspiron_3793latitude_rugged_5430xps_9305_firmwarealienware_m15_r6inspiron_7591vostro_3890_firmwareoptiplex_5490_aiolatitude_7310inspiron_14_5410_firmwareinspiron_7790latitude_5421_firmwareg3_3590_firmwareinspiron_7500inspiron_7790_firmwareg15_5511inspiron_5584_firmwareprecision_5540_firmwareprecision_5760vostro_5590inspiron_5401_firmwarevostro_5501optiplex_7480_all-in-onechengming_3990_firmwarexps_8940_firmwarelatitude_7320_firmwarelatitude_3120latitude_rugged_7220_firmwareprecision_3520_firmwareprecision_3560inspiron_5594_firmwareprecision_3551_firmwareinspiron_5401_aioprecision_3640inspiron_7700_aio_firmwarevostro_3400_firmwarevostro_5310_firmwareinspiron_5509_firmwareinspiron_5593_firmwarelatitude_7200_2-in-1_firmwareinspiron_5598_firmwareoptiplex_7480_all-in-one_firmwareprecision_3650_firmwarevostro_3500xps_9305precision_3240_compactprecision_7750_firmwareinspiron_5391_firmwarelatitude_3520_firmwarevostro_3401inspiron_5490_aioinspiron_5502_firmwarechengming_3991_firmwarevostro_7590_firmwareinspiron_14_5418inspiron_3490_firmwareinspiron_5409_firmwareinspiron_7400xps_13_9380_firmwareinspiron_5390optiplex_7070_uff_firmwareprecision_3240_compact_firmwarelatitude_5521_firmwarevostro_3510inspiron_5401xps_13_9310_2-in-1vostro_5591_firmwareCPG BIOS
CWE ID-CWE-1190
DMA Device Enabled Too Early in Boot Phase
CVE-2021-36342
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.25% / 16.33%
||
7 Day CHG~0.00%
Published-24 Jan, 2022 | 20:10
Updated-23 Feb, 2026 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Action-Not Available
Vendor-Dell Inc.
Product-embedded_box_pc_5000_firmwarealienware_aurora_r12_firmwarealienware_17_r4_firmwarelatitude_7200_2-in-1_firmwareprecision_3561_firmwareinspiron_5477_aiodell_g15_5510inspiron_15_3573_firmwarevostro_5501vostro_3401inspiron_3580inspiron_3480optiplex_3240_all-in-onelatitude_7520inspiron_3470_firmwarelatitude_9510_firmwareinspiron_5301_firmwaredell_g5_5590_firmwarelatitude_5310_firmwarevostro_3669vostro_14_5471_firmwarelatitude_3320vostro_13_5370latitude_5410_firmwarelatitude_7410inspiron_7706_2-in-1dell_g5_5590inspiron_3880_firmwareoptiplex_xe3inspiron_5770inspiron_7400precision_7550latitude_5488vostro_5490_firmwarelatitude_rugged_7424inspiron_5598latitude_7275_2-in-1_firmwareinspiron_5583_firmwarelatitude_3551_firmwareprecision_3440_firmwareinspiron_13_7378vostro_14_3478_firmwareinspiron_15_5578_firmwarelatitude_5500_firmwarealienware_area_51m_r1_firmwaredell_g7_7587_firmwarelatitude_e5470_firmwarevostro_3690optiplex_5250_firmwareinspiron_3490_firmwareoptiplex_7490_aiolatitude_5511_firmwareinspiron_3462_firmwareoptiplex_7460_all_in_onelatitude_3190_2-in-1latitude_5480_firmwareinspiron_5401inspiron_7400_firmwareprecision_7560inspiron_5590precision_3620_tower_firmwareoptiplex_7450_firmwareinspiron_7386inspiron_15_7573vostro_3562latitude_rugged_5424dell_g3_3590latitude_7310latitude_3500vostro_3470inspiron_7506_2-in-1_firmwarevostro_14_5468inspiron_3480_aioprecision_3930_rack_firmwareinspiron_7791latitude_5300_firmwaredell_g5_5000_firmwarevostro_3881_firmwareprecision_5530_2-in-1latitude_7290latitude_7414_rugged_extremevostro_5481latitude_5290_2-in-1_firmwarealienware_aurora_r8latitude_3590inspiron_7610_firmwarealienware_aurora_r12latitude_3480_firmwareinspiron_15_5582latitude_rugged_7220latitude_7380_firmwarelatitude_12_5289_2-in-1vostro_3581_firmwareinspiron_5410inspiron_3671inspiron_5409_firmwareoptiplex_7050_firmwareoptiplex_7090_tower_firmwareinspiron_14_3473inspiron_14_3473_firmwareprecision_7740precision_3450vostro_5880_firmwareoptiplex_3240_all-in-one_firmwareprecision_5820_tower_firmwarelatitude_3400inspiron_7500alienware_x15_r1vostro_5502_firmwaredell_g3_3779inspiron_5408inspiron_5580_firmwareoptiplex_5070inspiron_5480latitude_5420_firmwareprecision_3540latitude_5591vostro_3660precision_3541precision_3620_towervostro_5590_firmwarevostro_3400optiplex_7440_aio_firmwareinspiron_5391latitude_5175_firmwarelatitude_7480latitude_7210_2-in-1_firmwarelatitude_7400_2-in-1_firmwareinspiron_7777_aiovostro_15_5510_firmwarevostro_3401_firmwarelatitude_5400_firmwareinspiron_3502optiplex_7070precision_3431_tower_firmwaredell_g15_5511_firmwareinspiron_5400_2-in-1_firmwareinspiron_3782_firmwarevostro_3481_firmwarelatitude_5590_firmwareoptiplex_7090_uff_firmwareoptiplex_3050_firmwarevostro_3890optiplex_7780_all-in-onechengming_3980_firmwareprecision_5750_firmwareoptiplex_3046inspiron_5401_firmwarevostro_15_3578_firmwarevostro_3669_firmwarelatitude_9410inspiron_3593vostro_15_7580inspiron_7590precision_3520vostro_14_3468_firmwarealienware_15_r3_firmwareprecision_5510_firmwaredell_g5_5090dell_g7_7700vostro_15_3568alienware_m15_r4latitude_7480_firmwarelatitude_e5570latitude_7400_2-in-1alienware_m15_r1latitude_13_7390_2-in-1vostro_5090inspiron_3780_firmwarelatitude_5590alienware_13_r3_firmwarelatitude_5501latitude_rugged_7220exvostro_3670latitude_3400_firmwaredell_g3_3579vostro_5890latitude_7300optiplex_5080inspiron_3880latitude_5591_firmwarevostro_3582_firmwarelatitude_5501_firmwareinspiron_13_7370optiplex_5490_aiovostro_5581_firmwarelatitude_e5570_firmwareinspiron_3268vostro_3671_firmwarevostro_5402_firmwareinspiron_5580precision_7540vostro_15_5510precision_5540_firmwarevostro_3583inspiron_3477_aio_firmwareoptiplex_7070_uff_firmwareinspiron_7790_firmwarevostro_5591_firmwarealienware_m15_r3alienware_m17_r4_firmwarelatitude_5510inspiron_5481_firmwareprecision_3440inspiron_7380_firmwaredell_g7_7500_firmwareinspiron_13_7370_firmwarelatitude_5401vostro_5301latitude_rugged_7220_firmwarevostro_5490alienware_17_r5_firmwarelatitude_7320dell_g15_5511inspiron_3482_firmwareinspiron_5482_firmwarevostro_3584inspiron_15_7572_firmwarelatitude_e5270optiplex_3070latitude_3301vostro_3400_firmwareoptiplex_5040_firmwarevostro_5300inspiron_15_3567_firmwareinspiron_14_5410_firmwareinspiron_3472_firmwareinspiron_7786optiplex_7071alienware_area_51m_r1latitude_13_7389_2-in-1_firmwarelatitude_e5270_firmwareprecision_7730vostro_3890_firmwareinspiron_5406_2-in-1_firmwarelatitude_5580inspiron_15_5518optiplex_3080vostro_5502vostro_15_3568_firmwareinspiron_5598_firmwareinspiron_5490inspiron_5584vostro_3481precision_7760vostro_3501precision_7730_firmwaredell_g7_7587inspiron_5406_2-in-1vostro_5391_firmwarelatitude_12_7280_ultrabooklatitude_7320_detachable_firmwareoptiplex_7070_uffalienware_x15_r1_firmwareprecision_3550inspiron_7586_firmwarelatitude_5290_firmwarelatitude_3520latitude_3510inspiron_5593precision_5820_towerlatitude_5520inspiron_3670_firmwareinspiron_14_3467_firmwareoptiplex_3090latitude_5411_firmwareinspiron_13_7000_firmwarelatitude_5290_2-in-1inspiron_3668_firmwareoptiplex_7050inspiron_5300optiplex_7780_all-in-one_firmwarelatitude_5285_2-in-1optiplex_5260_all-in-oneinspiron_7501_firmwarevostro_3583_firmwareinspiron_5477_aio_firmwareinspiron_5391_firmwareinspiron_7580_firmwareoptiplex_7440_aioinspiron_7390_firmwarealienware_15_r3optiplex_5040precision_5510alienware_aurora_r11latitude_5401_firmwareinspiron_15_5566inspiron_15_gaming_7577_firmwaredell_g5_5500latitude_13_7370_ultrabookalienware_17_r5latitude_14_rugged_5414vostro_3671inspiron_5402_firmwareinspiron_7590_firmwarelatitude_5500inspiron_3582inspiron_7591_firmwareoptiplex_5270_all-in-onevostro_7500_firmwareinspiron_3472optiplex_3060_firmwarelatitude_5179_firmwareprecision_7530inspiron_5493_firmwareinspiron_5591_2-in-1_firmwarevostro_15_3572inspiron_3668precision_7560_firmwareinspiron_3881_firmwareinspiron_7490_firmwareprecision_5720_aiovostro_3501_firmwareinspiron_3476_firmwareinspiron_3781_firmwareinspiron_3790_firmwarelatitude_12_rugged_extreme_7214inspiron_3462vostro_15_5410_firmwareinspiron_3511_firmwarevostro_3668latitude_5421latitude_5280latitude_rugged_5420latitude_3310inspiron_5508precision_3240_cffinspiron_5491_2-in-1_firmwareoptiplex_3050_aio_firmwareoptiplex_5480_all-in-one_firmwarealienware_m17_r1_firmwareinspiron_5593_firmwarelatitude_5480vostro_5591inspiron_5481vostro_7510_firmwareoptiplex_3060inspiron_5310_firmwareinspiron_5491_2-in-1dell_g7_7700_firmwareinspiron_3471_firmwarelatitude_3420_firmwarevostro_5090_firmwareoptiplex_7480_all-in-oneoptiplex_3070_firmwarevostro_3581inspiron_13_7000vostro_5301_firmwarevostro_15_5410latitude_5490precision_5530latitude_7380inspiron_3481inspiron_3510inspiron_7391_firmwareinspiron_17_7773_firmwarealienware_area_51m_r2_firmwareoptiplex_3090_firmwarevostro_5300_firmwarevostro_5310_firmwareinspiron_5584_firmwarevostro_7590latitude_5175vostro_5590alienware_m17_r1precision_5530_2-in-1_firmwareinspiron_3502_firmwarelatitude_3570_firmwareinspiron_7391inspiron_7390latitude_9420_firmwareinspiron_5480_firmwarevostro_14_3468dell_g15_5510_firmwarevostro_3490_firmwaredell_g7_7588_firmwareinspiron_5370precision_3560_firmwaredell_g7_7500optiplex_5080_firmwarealienware_m17_r3_firmwareinspiron_13_5379latitude_5510_firmwaredell_g5_5090_firmwarevostro_3888_firmwareinspiron_15_5518_firmwarealienware_x17_r1_firmwareinspiron_3671_firmwarelatitude_3490latitude_3510_firmwareinspiron_5300_firmwarelatitude_3190vostro_15_7570alienware_15_r4precision_7920_tower_firmwareinspiron_7501inspiron_5502_firmwarelatitude_5320_firmwareinspiron_13_7373_firmwareinspiron_5490_aiooptiplex_3050_aiochengming_3988_firmwareinspiron_7706_2-in-1_firmwareinspiron_3576inspiron_13_5378inspiron_13_5378_firmwarechengming_3988latitude_12_7280_ultrabook_firmwareinspiron_3582_firmwarevostro_3582inspiron_3782latitude_12_5289_2-in-1_firmwarelatitude_5290inspiron_3490latitude_5421_firmwareprecision_7510alienware_area_51m_r2optiplex_5270_all-in-one_firmwareprecision_5520vostro_3580_firmwarelatitude_5420inspiron_13_7378_firmwaredell_g7_7790latitude_5285_2-in-1_firmwarevostro_3480_firmwareinspiron_7300_firmwarelatitude_5400inspiron_3280_firmwarelatitude_rugged_7220ex_firmwareprecision_3630_tower_firmwarealienware_m17_r4latitude_5320inspiron_5491_aio_firmwareinspiron_5409vostro_3590optiplex_5090_towerinspiron_3501inspiron_3482inspiron_7510_firmwarelatitude_3380_firmwarevostro_5401precision_7920_toweroptiplex_7460_all_in_one_firmwareinspiron_5509_firmwarevostro_3471vostro_14_5471inspiron_3780latitude_5288_firmwarevostro_3268_firmwarevostro_15_7580_firmwareinspiron_7510precision_3450_firmwareprecision_3541_firmwareinspiron_5570_firmwarealienware_15_r4_firmwaredell_g3_3500_firmwareinspiron_13_5379_firmwareprecision_3420_tower_firmwarechengming_3990_firmwareinspiron_5591_2-in-1latitude_7320_detachableinspiron_7306_2-in-1latitude_3580latitude_3380latitude_7210_2-in-1vostro_5391inspiron_5590_firmwareinspiron_7380optiplex_7470_all-in-oneinspiron_3480_firmwareinspiron_15_7572inspiron_3481_firmwarelatitude_3120_firmwareprecision_7510_firmwarelatitude_7290_firmwareinspiron_3580_firmwareinspiron_3576_firmwareinspiron_5402vostro_3580latitude_7410_firmwareinspiron_7791_firmwareinspiron_5493inspiron_5501_firmwarelatitude_3490_firmwarelatitude_13_7389_2-in-1precision_7540_firmwareoptiplex_5060latitude_7390precision_5550_firmwareinspiron_15_5566_firmwareprecision_7520latitude_e7470_firmwarelatitude_rugged_5420_firmwareprecision_7760_firmwareinspiron_7700_aio_firmwarelatitude_5491inspiron_14_5410inspiron_15_5579precision_7550_firmwareprecision_7720_firmwarevostro_15_3578vostro_15_7570_firmwaredell_g3_3779_firmwarelatitude_5490_firmwareoptiplex_7770_all-in-one_firmwarelatitude_3500_firmwareinspiron_3593_firmwarevostro_15_3572_firmwarealienware_aurora_r8_firmwarealienware_m15_r2optiplex_7770_all-in-onedell_g3_3500latitude_3520_firmwarelatitude_7490_firmwareoptiplex_7760_aioinspiron_3277_aiolatitude_5310latitude_3470vostro_3590_firmwarelatitude_7390_firmwareinspiron_5400_aio_firmwarelatitude_3480chengming_3980inspiron_3590_firmwareinspiron_5400_aiochengming_3990inspiron_3471inspiron_13_7373precision_7530_firmwareinspiron_5301latitude_12_rugged_tablet_7212optiplex_7080inspiron_3493_firmwarevostro_3470_firmwareinspiron_7506_2-in-1inspiron_7300_2-in-1_firmwareinspiron_3470inspiron_3268_firmwarelatitude_3190_2-in-1_firmwarevostro_3681latitude_3320_firmwareinspiron_7306_2-in-1_firmwareoptiplex_5060_firmwareoptiplex_5050inspiron_3476chengming_3977_firmwareinspiron_5501optiplex_5090_tower_firmwareinspiron_7472latitude_14_rugged_5414_firmwareinspiron_5594_firmwarevostro_3510chengming_3991inspiron_3781inspiron_15_7570inspiron_15_3567vostro_3667_firmwarelatitude_3189_firmwarelatitude_3180_firmwareoptiplex_3050optiplex_3280_all-in-one_firmwarevostro_3490latitude_12_rugged_tablet_7212_firmwarelatitude_3379_firmwareprecision_7520_firmwarevostro_3670_firmwarelatitude_3310_2-in-1latitude_5300_2-in-1latitude_5179latitude_7490latitude_3570inspiron_7591inspiron_5594inspiron_3511latitude_3180latitude_3190_firmwarevostro_3268latitude_e7470vostro_3584_firmwarelatitude_3300_firmwareprecision_7710_firmwarevostro_5401_firmwarelatitude_7414_rugged_extreme_firmwareprecision_3630_towervostro_3070_firmwarevostro_15_5568_firmwarelatitude_7275_2-in-1precision_3640vostro_13_5370_firmwarelatitude_7300_firmwareoptiplex_3280_all-in-oneoptiplex_7090_uffvostro_5481_firmwaredell_g7_7590_firmwarevostro_5890_firmwareinspiron_5498latitude_7400_firmwareinspiron_3280vostro_3510_firmwareoptiplex_5250inspiron_3881inspiron_3501_firmwareoptiplex_7080_firmwarelatitude_5491_firmwarelatitude_9420dell_g5_5500_firmwarelatitude_rugged_5424_firmwareoptiplex_7760_aio_firmwareinspiron_15_7573_firmwarevostro_3660_firmwareinspiron_5491_aiovostro_3681_firmwarelatitude_3590_firmwareoptiplex_5490_aio_firmwarealienware_aurora_r11_firmwarelatitude_5520_firmwareinspiron_5498_firmwarelatitude_9520_firmwarelatitude_13_7390_2-in-1_firmwareoptiplex_3046_firmwareinspiron_5410_firmwareprecision_7750_firmwarevostro_3267_firmwareinspiron_3581_firmwarelatitude_rugged_7424_firmwaredell_g3_3590_firmwarelatitude_12_7285alienware_m15_r2_firmwareprecision_3430_tower_firmwareinspiron_5390_firmwarelatitude_3379latitude_7420_firmwarevostro_5491inspiron_3480_aio_firmwareoptiplex_7040_firmwareprecision_7710alienware_m15_r1_firmwarealienware_13_r3optiplex_7490_aio_firmwarelatitude_7310_firmwareinspiron_15_gaming_7577vostro_3562_firmwarevostro_14_5468_firmwarelatitude_12_rugged_extreme_7214_firmwarelatitude_3551vostro_5390_firmwarelatitude_5300_2-in-1_firmwareprecision_3420_towerinspiron_3581latitude_3410precision_3520_firmwareinspiron_5494latitude_5310_2_in_1vostro_5501_firmwarelatitude_9410_firmwareinspiron_7500_2-in-1latitude_5411vostro_3471_firmwareinspiron_7580inspiron_3891_firmwareinspiron_5770_firmwarevostro_3070latitude_7320_firmwareoptiplex_5480_all-in-oneoptiplex_xe3_firmwareinspiron_15_3573precision_5530_firmwareinspiron_7300inspiron_3891optiplex_3040_firmwareembedded_box_pc_5000optiplex_7450vostro_5402vostro_14_3478inspiron_7777_aio_firmwareprecision_3240_cff_firmwareinspiron_5509vostro_3500inspiron_7790precision_3430_towerinspiron_5390latitude_3390latitude_5300inspiron_17_7773latitude_5521_firmwareinspiron_7300_2-in-1latitude_3300optiplex_5070_firmwarealienware_17_r4vostro_5310vostro_7510vostro_3500_firmwarevostro_7500inspiron_7386_firmwarevostro_3690_firmwarealienware_m15_r3_firmwareinspiron_3590latitude_5521latitude_9510optiplex_7070_firmwareoptiplex_7090_toweralienware_aurora_r9_firmwarelatitude_7400vostro_15_5568latitude_5288vostro_3881precision_3530precision_3930_rackinspiron_3670inspiron_5508_firmwareinspiron_7500_2-in-1_firmwareoptiplex_5050_firmwarelatitude_5488_firmwareinspiron_3790alienware_m15_r4_firmwarechengming_3977optiplex_3040optiplex_3080_firmwareinspiron_7472_firmwareinspiron_5401_aio_firmwarelatitude_3470_firmwareprecision_7720inspiron_5401_aiolatitude_3420inspiron_14_3467inspiron_5583latitude_3310_firmwareoptiplex_7480_all-in-one_firmwareinspiron_3793_firmwarelatitude_3410_firmwaredell_g7_7588precision_5720_aio_firmwarelatitude_5511precision_3510precision_7820_tower_firmwareinspiron_5408_firmwarelatitude_3189latitude_7200_2-in-1vostro_3668_firmwareprecision_3510_firmwareprecision_7820_towerinspiron_15_5582_firmwarealienware_m17_r3inspiron_15_7570_firmwarealienware_x17_r1dell_g7_7590inspiron_5400_2-in-1inspiron_5482inspiron_7700_aiovostro_7590_firmwarealienware_m17_r2latitude_5410latitude_7420optiplex_5260_all-in-one_firmwareprecision_5520_firmwareinspiron_5494_firmwareinspiron_5310precision_3640_firmwarelatitude_5280_firmwareinspiron_5490_aio_firmwareoptiplex_7060inspiron_3510_firmwareprecision_5550vostro_3888precision_3560latitude_3301_firmwarelatitude_e7270latitude_3120precision_3540_firmwarelatitude_12_7285_firmwareoptiplex_7040precision_3550_firmwareinspiron_15_5579_firmwareoptiplex_7470_all-in-one_firmwareprecision_7750alienware_aurora_r9dell_g3_3579_firmwarelatitude_3580_firmwareinspiron_5570precision_3530_firmwareprecision_7740_firmwaredell_g5_5000vostro_5491_firmwareinspiron_7586vostro_5390precision_3431_towerprecision_3561vostro_5880inspiron_3793latitude_3390_firmwareinspiron_15_5578inspiron_5680vostro_3667latitude_e7270_firmwareprecision_5750inspiron_7500_firmwareinspiron_7490chengming_3991_firmwareinspiron_3277_aio_firmwarelatitude_5580_firmwareinspiron_5680_firmwareoptiplex_7060_firmwareinspiron_7786_firmwareinspiron_5490_firmwarelatitude_7520_firmwarelatitude_3310_2-in-1_firmwarevostro_5581latitude_5310_2_in_1_firmwarelatitude_13_7370_ultrabook_firmwareinspiron_5370_firmwarealienware_m17_r2_firmwareinspiron_5502vostro_3480latitude_9520precision_5540inspiron_3493optiplex_7071_firmwarelatitude_e5470inspiron_7610dell_g7_7790_firmwarevostro_3267inspiron_3477_aioCPG BIOS
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-20
Improper Input Validation
CVE-2021-36323
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.23% / 14.09%
||
7 Day CHG~0.00%
Published-12 Nov, 2021 | 22:15
Updated-17 Sep, 2024 | 02:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Action-Not Available
Vendor-Dell Inc.
Product-inspiron_15_7570_firmwarelatitude_5401g7_7590inspiron_3470latitude_e7270optiplex_7770_firmwarevostro_3669inspiron_5491_firmwareprecision_7820_firmwareinspiron_5477_firmwarelatitude_5179inspiron_15_7577latitude_7380_firmwarevostro_3888xps_13_9370inspiron_5570vostro_3888_firmwarewyse_7040latitude_e5270precision_7540alienware_15_r3_firmwareprecision_3420wyse_5070inspiron_5490_firmwarealienware_area_51m_r1_firmwarelatitude_5590optiplex_5080latitude_5511inspiron_7580_firmwarealienware_m15_r1_firmwareprecision_7720precision_7920alienware_m17_r3_firmwarelatitude_5300vostro_5581_firmwarelatitude_3380_firmwareprecision_5530_firmwareoptiplex_5040latitude_rugged_5420vostro_15_7580inspiron_14_5468optiplex_5050alienware_aurora_r11latitude_3470latitude_7300g5_5590xps_13_9360vostro_14_3478_firmwareoptiplex_3060_firmwarelatitude_3590_firmwarelatitude_7490_firmwarealienware_m15_r2precision_5520latitude_7400latitude_5591precision_3620precision_5820inspiron_3471latitude_3390optiplex_5050_firmwareprecision_7520_firmwareoptiplex_7071_firmwarelatitude_5175_firmwareinspiron_7586optiplex_3040_firmwareoptiplex_5070precision_3630_firmwareprecision_3430g5_5000inspiron_7700inspiron_13_5378_firmwarelatitude_7285_firmwarexps_13_9370_firmwarevostro_3581_firmwarelatitude_7275vostro_3581xps_15_9575latitude_9410inspiron_7777optiplex_7070latitude_3570optiplex_7080_firmwareoptiplex_5480_firmwareinspiron_15_5578_firmwarelatitude_5310latitude_rugged_7424_firmwarevostro_3268_firmwarevostro_3660alienware_aurora_r8alienware_x15_r1inspiron_5400latitude_7480_firmwarevostro_14_5468_firmwarelatitude_e5470_firmwarechengming_3977vostro_5090latitude_3190vostro_5370alienware_aurora_r8_firmwareinspiron_5580_firmwareinspiron_3881_firmwarelatitude_rugged_7424latitude_5488g3_3590optiplex_5260latitude_7380precision_3540alienware_aurora_r11_firmwarevostro_14_5468optiplex_7780optiplex_3280xps_15_9560inspiron_3580_firmwareinspiron_3781_firmwarevostro_5370_firmwarewyse_5070_firmwarevostro_3670_firmwarelatitude_7275_firmwareinspiron_3280_firmwarelatitude_3310precision_7520vostro_15_3578_firmwarevostro_3660_firmwareinspiron_5482latitude_7290g7_7587_firmwarealienware_area_51m_r1precision_7540_firmwareoptiplex_7760latitude_7480vostro_3881wyse_5470_firmwareinspiron_7580inspiron_3668inspiron_5770alienware_m17_r2_firmwarelatitude_3580inspiron_3668_firmwarelatitude_5285optiplex_7780_firmwareinspiron_5480_firmwarelatitude_3551optiplex_xe3_firmwareinspiron_7590vostro_5880vostro_3268optiplex_7070_firmwarevostro_3584optiplex_xe3precision_5510inspiron_7370precision_3240vostro_3481_firmwarelatitude_5491optiplex_3240_firmwareoptiplex_7040inspiron_7386alienware_aurora_r12latitude_7280latitude_5400latitude_5410inspiron_7373_firmwareprecision_3541xps_8940optiplex_7050_firmwareprecision_7730_firmwarelatitude_3379_firmwarelatitude_5401_firmwarealienware_m17_r3precision_7730inspiron_7380precision_3240_firmwarelatitude_7285latitude_5400_firmwareprecision_3420_firmwarevostro_3671_firmwareprecision_3440latitude_rugged_7220ex_firmwareprecision_7510_firmwareg5_5000_firmwareoptiplex_7460_firmwareoptiplex_5250_firmwareinspiron_5680_firmwarealienware_m15_r3_firmwareinspiron_3576inspiron_3671_firmwareprecision_3550_firmwarevostro_3668_firmwarelatitude_3310_firmwarevostro_15_7580_firmwareinspiron_3781inspiron_3576_firmwareg7_7588_firmwarelatitude_3570_firmwareoptiplex_3050_firmwareinspiron_7590_firmwarelatitude_rugged_5414_firmwareprecision_7740_firmwareinspiron_15_3567alienware_m15_r2_firmwarelatitude_7389vostro_3681inspiron_5570_firmwareinspiron_3481inspiron_3780_firmwareprecision_3530g7_7588latitude_5411_firmwareinspiron_3470_firmwareinspiron_5370inspiron_7467_firmwareprecision_7740inspiron_3481_firmwareprecision_5530latitude_7310_firmwareinspiron_15_5579_firmwarelatitude_9510inspiron_5770_firmwareinspiron_7586_firmwarelatitude_rugged_extreme_7214latitude_3180_firmwarevostro_3681_firmwarealienware_m17_r1_firmwarevostro_3580_firmwareinspiron_3581_firmwareinspiron_17_7773latitude_9510_firmwarelatitude_3490_firmwareprecision_5720_firmwareg7_7587vostro_3668optiplex_7770optiplex_5270latitude_7280_firmwarevostro_3670latitude_5280latitude_5179_firmwareinspiron_5490inspiron_15_5578latitude_5300_firmwareinspiron_3880inspiron_5580latitude_5480_firmwareinspiron_3277precision_7550xps_7590_firmwareoptiplex_3080alienware_m17_r1latitude_3480latitude_rugged_5424_firmwarevostro_3671inspiron_7591latitude_7310inspiron_7790g3_3590_firmwareinspiron_7790_firmwarealienware_13_r3latitude_3379vostro_3584_firmwarechengming_3990_firmwarevostro_15_5568precision_3520_firmwarechengming_3980inspiron_7567_firmwareoptiplex_7060vostro_14_3468_firmwarelatitude_5290_firmwareinspiron_13_5379_firmwareg5_5090_firmwarelatitude_7390latitude_3390_firmwareprecision_7750_firmwarealienware_aurora_r12_firmwareprecision_3431precision_7510vostro_3480_firmwarechengming_3991_firmwarevostro_7590_firmwareprecision_3510_firmwareinspiron_7370_firmwarelatitude_7389_firmwarelatitude_e7470optiplex_5040_firmwareinspiron_3581latitude_rugged_tablet_7212_firmwareoptiplex_7480inspiron_5400_firmwareinspiron_15_5566_firmwarelatitude_5488_firmwarealienware_17_r5_firmwareoptiplex_5480precision_3541_firmwarealienware_m15_r1precision_7920_firmwareinspiron_15_7572alienware_aurora_r7_firmwareinspiron_3476_firmwareinspiron_5680vostro_3881_firmwareinspiron_7373latitude_5511_firmwareinspiron_15_7573_firmwareoptiplex_7040_firmwareprecision_3550latitude_7370latitude_7370_firmwareoptiplex_7440_firmwareoptiplex_5070_firmwarealienware_15_r4latitude_5490alienware_m17_r2inspiron_7567vostro_3070_firmwarelatitude_rugged_extreme_7414xps_7590optiplex_7071vostro_3481inspiron_7786latitude_9410_firmwarevostro_7590latitude_e7270_firmwarelatitude_5280_firmwareg5_5587_firmwarelatitude_3180inspiron_3268latitude_e5470optiplex_3070_firmwarelatitude_7410_firmwarevostro_3667latitude_e7470_firmwareprecision_7720_firmwareinspiron_3476inspiron_13_5378inspiron_3780inspiron_7380_firmwarelatitude_7390_firmwarelatitude_5500_firmwareprecision_7710latitude_5410_firmwarevostro_5090_firmwareprecision_3520inspiron_17_7773_firmwareg7_7790latitude_e5570inspiron_3880_firmwareg5_5090optiplex_3050optiplex_5080_firmwareinspiron_15_7570latitude_e5270_firmwareoptiplex_7480_firmwarevostro_3471latitude_rugged_5420_firmwarelatitude_rugged_extreme_7214_firmwareinspiron_3480_firmwareg5_5590_firmwarealienware_m15_r3inspiron_7700_firmwareoptiplex_5060_firmwarelatitude_3470_firmwareprecision_7530_firmwarealienware_x17_r1latitude_rugged_5424vostro_3583_firmwareinspiron_15_5566latitude_3190_firmwarealienware_aurora_ryzen_edition_firmwareg3_3779_firmwarevostro_15_3578latitude_5500inspiron_15_5582precision_7550_firmwarewyse_7040_firmwarelatitude_5285_firmwareinspiron_5477chengming_3991latitude_5288_firmwarelatitude_rugged_extreme_7414_firmwareinspiron_5480inspiron_3471_firmwarevostro_3669_firmwarelatitude_5501latitude_7400_firmwareprecision_7710_firmwarelatitude_3590inspiron_7472_firmwareoptiplex_5260_firmwarechengming_3990vostro_3583latitude_5491_firmwarevostro_5880_firmwareprecision_3630xps_15_9560_firmwarevostro_14_3468optiplex_3060optiplex_5060chengming_3988_firmwareinspiron_5491inspiron_5482_firmwarevostro_5481inspiron_7467precision_3530_firmwareprecision_3930_firmwarelatitude_rugged_tablet_7212latitude_5580_firmwarelatitude_7200inspiron_3477_firmwarelatitude_3189vostro_3580precision_7750inspiron_7472latitude_5175inspiron_14_3467_firmwareprecision_3620_firmwareoptiplex_3280_firmwarevostro_15_3568embedded_box_pc_5000inspiron_3580vostro_3267_firmwarevostro_3470_firmwareg3_3579inspiron_7386_firmwareoptiplex_7080alienware_aurora_r9alienware_area_51m_r2_firmwareoptiplex_7440latitude_5480alienware_15_r3vostro_5471_firmwareoptiplex_7470optiplex_3046xps_15_9575_firmwarelatitude_7210_firmwareinspiron_15_5582_firmwarealienware_x15_r1_firmwarelatitude_7300_firmwarelatitude_5510wyse_5470inspiron_5481precision_3440_firmwarealienware_x17_r1_firmwarexps_8930xps_27_7760inspiron_7786_firmwareprecision_3640_firmwareinspiron_15_5579vostro_15_3568_firmwarelatitude_7410latitude_5501_firmwarexps_27_7760_firmwareprecision_3430_firmwarelatitude_5411optiplex_7450_firmwareoptiplex_7450inspiron_15_3567_firmwareg3_3579_firmwarevostro_15_5568_firmwarelatitude_3480_firmwarelatitude_3189_firmwarexps_13_9360_firmwarealienware_17_r5optiplex_7760_firmwareinspiron_14_5468_firmwareinspiron_7591_firmwarelatitude_5290alienware_aurora_r7latitude_5289_firmwarechengming_3980_firmwarelatitude_5590_firmwareinspiron_15_7572_firmwarevostro_5481_firmwarelatitude_rugged_5414vostro_3267inspiron_14_3467inspiron_3671precision_5540alienware_17_r4precision_3930inspiron_3480latitude_3490inspiron_3670latitude_3300_firmwarevostro_5471alienware_15_r4_firmwarevostro_5581latitude_7200_firmwareg7_7790_firmwarelatitude_5510_firmwareinspiron_3670_firmwarevostro_15_7570latitude_e5570_firmwareprecision_3540_firmwareinspiron_7777_firmwareoptiplex_3046_firmwarelatitude_3380latitude_7210latitude_5289precision_7820vostro_3471_firmwareoptiplex_3080_firmwareoptiplex_3240precision_5510_firmwarelatitude_rugged_7220inspiron_3881xps_13_9380alienware_area_51m_r2latitude_5490_firmwarelatitude_5591_firmwarealienware_13_r3_firmwarelatitude_5310_firmwarevostro_3070inspiron_5481_firmwareprecision_5520_firmwarechengming_3988xps_15_7590inspiron_3477latitude_3300latitude_5580precision_5540_firmwareinspiron_3277_firmwareinspiron_5401_firmwarexps_8940_firmwareinspiron_3268_firmwarevostro_3480latitude_rugged_7220_firmwareprecision_3640alienware_17_r4_firmwarelatitude_rugged_7220exg5_5587latitude_3580_firmwarevostro_3470alienware_aurora_r9_firmwareoptiplex_3070inspiron_3280optiplex_3040precision_5720latitude_7290_firmwareoptiplex_5270_firmwareprecision_7530inspiron_5370_firmwarelatitude_3551_firmwarexps_8930_firmwarechengming_3977_firmwareoptiplex_7470_firmwareoptiplex_7460g7_7590_firmwarexps_15_7590_firmwareembedded_box_pc_5000_firmwareinspiron_15_7573optiplex_7050precision_3431_firmwareprecision_3510vostro_14_3478xps_13_9380_firmwareinspiron_13_5379latitude_5288latitude_7490optiplex_7060_firmwareg3_3779precision_5820_firmwareinspiron_5401optiplex_5250vostro_3667_firmwarealienware_aurora_ryzen_editioninspiron_15_7577_firmwarevostro_15_7570_firmwareCPG BIOS
CWE ID-CWE-20
Improper Input Validation
CVE-2021-36315
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.8||MEDIUM
EPSS-0.25% / 15.72%
||
7 Day CHG~0.00%
Published-12 Nov, 2021 | 22:15
Updated-17 Sep, 2024 | 00:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a critical vulnerability. Dell EMC recommends applying the workaround at your earliest opportunity.

Action-Not Available
Vendor-Dell Inc.
Product-emc_powerscale_nodes_a3000_firmwareemc_powerscale_nodes_h5600_firmwareemc_powerscale_nodes_f810_firmwareemc_powerscale_nodes_h400_firmwareemc_powerscale_nodes_h700emc_powerscale_nodes_h5600emc_powerscale_nodes_h700_firmwareemc_powerscale_nodes_x410emc_powerscale_nodes_a200_firmwareemc_powerscale_nodes_f200_firmwareemc_powerscale_nodes_x210emc_powerscale_nodes_a100_firmwareemc_powerscale_nodes_s210_firmwareemc_powerscale_nodes_f800_firmwareemc_powerscale_nodes_f600_firmwareemc_powerscale_nodes_f600emc_powerscale_nodes_a300_firmwareemc_powerscale_nodes_a200emc_powerscale_nodes_a3000emc_powerscale_nodes_h7000_firmwareemc_powerscale_nodes_x210_firmwareemc_powerscale_nodes_a2000emc_powerscale_nodes_f200emc_powerscale_nodes_h500_firmwareemc_powerscale_nodes_s210emc_powerscale_nodes_nl410emc_powerscale_nodes_h400emc_powerscale_nodes_h7000emc_powerscale_nodes_h600emc_powerscale_nodes_nl410_firmwareemc_powerscale_nodes_a100emc_powerscale_nodes_x410_firmwareemc_powerscale_nodes_a300emc_powerscale_nodes_a2000_firmwareemc_powerscale_nodes_f810emc_powerscale_nodes_h500emc_powerscale_nodes_f800emc_powerscale_nodes_h600_firmwarePowerScale Nodes
CVE-2021-36324
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.23% / 14.09%
||
7 Day CHG~0.00%
Published-12 Nov, 2021 | 22:15
Updated-16 Sep, 2024 | 18:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Action-Not Available
Vendor-Dell Inc.
Product-inspiron_15_7570_firmwarelatitude_5401g7_7590inspiron_3470latitude_e7270optiplex_7770_firmwarevostro_3669inspiron_5491_firmwareprecision_7820_firmwareinspiron_5477_firmwarelatitude_5179inspiron_15_7577latitude_7380_firmwarevostro_3888xps_13_9370inspiron_5570vostro_3888_firmwarewyse_7040latitude_e5270precision_7540alienware_15_r3_firmwareprecision_3420wyse_5070inspiron_5490_firmwarealienware_area_51m_r1_firmwarelatitude_5590optiplex_5080latitude_5511inspiron_7580_firmwarealienware_m15_r1_firmwareprecision_7720precision_7920alienware_m17_r3_firmwarelatitude_5300vostro_5581_firmwarelatitude_3380_firmwareprecision_5530_firmwareoptiplex_5040latitude_rugged_5420vostro_15_7580inspiron_14_5468optiplex_5050alienware_aurora_r11latitude_3470latitude_7300g5_5590xps_13_9360vostro_14_3478_firmwareoptiplex_3060_firmwarelatitude_3590_firmwarelatitude_7490_firmwarealienware_m15_r2precision_5520latitude_7400latitude_5591precision_3620precision_5820inspiron_3471latitude_3390optiplex_5050_firmwareprecision_7520_firmwareoptiplex_7071_firmwarelatitude_5175_firmwareinspiron_7586optiplex_3040_firmwareoptiplex_5070precision_3630_firmwareprecision_3430g5_5000inspiron_7700inspiron_13_5378_firmwarelatitude_7285_firmwarexps_13_9370_firmwarevostro_3581_firmwarelatitude_7275vostro_3581xps_15_9575latitude_9410inspiron_7777optiplex_7070latitude_3570optiplex_7080_firmwareoptiplex_5480_firmwareinspiron_15_5578_firmwarelatitude_5310latitude_rugged_7424_firmwarevostro_3268_firmwarevostro_3660alienware_aurora_r8alienware_x15_r1inspiron_5400latitude_7480_firmwarevostro_14_5468_firmwarelatitude_e5470_firmwarechengming_3977vostro_5090latitude_3190vostro_5370alienware_aurora_r8_firmwareinspiron_5580_firmwareinspiron_3881_firmwarelatitude_rugged_7424latitude_5488g3_3590optiplex_5260latitude_7380precision_3540alienware_aurora_r11_firmwarevostro_14_5468optiplex_7780optiplex_3280xps_15_9560inspiron_3580_firmwareinspiron_3781_firmwarevostro_5370_firmwarewyse_5070_firmwarevostro_3670_firmwarelatitude_7275_firmwareinspiron_3280_firmwarelatitude_3310precision_7520vostro_15_3578_firmwarevostro_3660_firmwareinspiron_5482latitude_7290g7_7587_firmwarealienware_area_51m_r1precision_7540_firmwareoptiplex_7760latitude_7480vostro_3881wyse_5470_firmwareinspiron_7580inspiron_3668inspiron_5770alienware_m17_r2_firmwarelatitude_3580inspiron_3668_firmwarelatitude_5285optiplex_7780_firmwareinspiron_5480_firmwarelatitude_3551optiplex_xe3_firmwareinspiron_7590vostro_5880vostro_3268optiplex_7070_firmwarevostro_3584optiplex_xe3precision_5510inspiron_7370precision_3240vostro_3481_firmwarelatitude_5491optiplex_3240_firmwareoptiplex_7040inspiron_7386alienware_aurora_r12latitude_7280latitude_5400latitude_5410inspiron_7373_firmwareprecision_3541xps_8940optiplex_7050_firmwareprecision_7730_firmwarelatitude_3379_firmwarelatitude_5401_firmwarealienware_m17_r3precision_7730inspiron_7380precision_3240_firmwarelatitude_7285latitude_5400_firmwareprecision_3420_firmwarevostro_3671_firmwareprecision_3440latitude_rugged_7220ex_firmwareprecision_7510_firmwareg5_5000_firmwareoptiplex_7460_firmwareoptiplex_5250_firmwareinspiron_5680_firmwarealienware_m15_r3_firmwareinspiron_3576inspiron_3671_firmwareprecision_3550_firmwarevostro_3668_firmwarelatitude_3310_firmwarevostro_15_7580_firmwareinspiron_3781inspiron_3576_firmwareg7_7588_firmwarelatitude_3570_firmwareoptiplex_3050_firmwareinspiron_7590_firmwarelatitude_rugged_5414_firmwareprecision_7740_firmwareinspiron_15_3567alienware_m15_r2_firmwarelatitude_7389vostro_3681inspiron_5570_firmwareinspiron_3481inspiron_3780_firmwareprecision_3530g7_7588latitude_5411_firmwareinspiron_3470_firmwareinspiron_5370inspiron_7467_firmwareprecision_7740inspiron_3481_firmwareprecision_5530latitude_7310_firmwareinspiron_15_5579_firmwarelatitude_9510inspiron_5770_firmwareinspiron_7586_firmwarelatitude_rugged_extreme_7214latitude_3180_firmwarevostro_3681_firmwarealienware_m17_r1_firmwarevostro_3580_firmwareinspiron_3581_firmwareinspiron_17_7773latitude_9510_firmwarelatitude_3490_firmwareprecision_5720_firmwareg7_7587vostro_3668optiplex_7770optiplex_5270latitude_7280_firmwarevostro_3670latitude_5280latitude_5179_firmwareinspiron_5490inspiron_15_5578latitude_5300_firmwareinspiron_3880inspiron_5580latitude_5480_firmwareinspiron_3277precision_7550xps_7590_firmwareoptiplex_3080alienware_m17_r1latitude_3480latitude_rugged_5424_firmwarevostro_3671inspiron_7591latitude_7310inspiron_7790g3_3590_firmwareinspiron_7790_firmwarealienware_13_r3latitude_3379vostro_3584_firmwarechengming_3990_firmwarevostro_15_5568precision_3520_firmwarechengming_3980inspiron_7567_firmwareoptiplex_7060vostro_14_3468_firmwarelatitude_5290_firmwareinspiron_13_5379_firmwareg5_5090_firmwarelatitude_7390latitude_3390_firmwareprecision_7750_firmwarealienware_aurora_r12_firmwareprecision_3431precision_7510vostro_3480_firmwarechengming_3991_firmwarevostro_7590_firmwareprecision_3510_firmwareinspiron_7370_firmwarelatitude_7389_firmwarelatitude_e7470optiplex_5040_firmwareinspiron_3581latitude_rugged_tablet_7212_firmwareoptiplex_7480inspiron_5400_firmwareinspiron_15_5566_firmwarelatitude_5488_firmwarealienware_17_r5_firmwareoptiplex_5480precision_3541_firmwarealienware_m15_r1precision_7920_firmwareinspiron_15_7572alienware_aurora_r7_firmwareinspiron_3476_firmwareinspiron_5680vostro_3881_firmwareinspiron_7373latitude_5511_firmwareinspiron_15_7573_firmwareoptiplex_7040_firmwareprecision_3550latitude_7370latitude_7370_firmwareoptiplex_7440_firmwareoptiplex_5070_firmwarealienware_15_r4latitude_5490alienware_m17_r2inspiron_7567vostro_3070_firmwarelatitude_rugged_extreme_7414xps_7590optiplex_7071vostro_3481inspiron_7786latitude_9410_firmwarevostro_7590latitude_e7270_firmwarelatitude_5280_firmwareg5_5587_firmwarelatitude_3180inspiron_3268latitude_e5470optiplex_3070_firmwarelatitude_7410_firmwarevostro_3667latitude_e7470_firmwareprecision_7720_firmwareinspiron_3476inspiron_13_5378inspiron_3780inspiron_7380_firmwarelatitude_7390_firmwarelatitude_5500_firmwareprecision_7710latitude_5410_firmwarevostro_5090_firmwareprecision_3520inspiron_17_7773_firmwareg7_7790latitude_e5570inspiron_3880_firmwareg5_5090optiplex_3050optiplex_5080_firmwareinspiron_15_7570latitude_e5270_firmwareoptiplex_7480_firmwarevostro_3471latitude_rugged_5420_firmwarelatitude_rugged_extreme_7214_firmwareinspiron_3480_firmwareg5_5590_firmwarealienware_m15_r3inspiron_7700_firmwareoptiplex_5060_firmwarelatitude_3470_firmwareprecision_7530_firmwarealienware_x17_r1latitude_rugged_5424vostro_3583_firmwareinspiron_15_5566latitude_3190_firmwarealienware_aurora_ryzen_edition_firmwareg3_3779_firmwarevostro_15_3578latitude_5500inspiron_15_5582precision_7550_firmwarewyse_7040_firmwarelatitude_5285_firmwareinspiron_5477chengming_3991latitude_5288_firmwarelatitude_rugged_extreme_7414_firmwareinspiron_5480inspiron_3471_firmwarevostro_3669_firmwarelatitude_5501latitude_7400_firmwareprecision_7710_firmwarelatitude_3590inspiron_7472_firmwareoptiplex_5260_firmwarechengming_3990vostro_3583latitude_5491_firmwarevostro_5880_firmwareprecision_3630xps_15_9560_firmwarevostro_14_3468optiplex_3060optiplex_5060chengming_3988_firmwareinspiron_5491inspiron_5482_firmwarevostro_5481inspiron_7467precision_3530_firmwareprecision_3930_firmwarelatitude_rugged_tablet_7212latitude_5580_firmwarelatitude_7200inspiron_3477_firmwarelatitude_3189vostro_3580precision_7750inspiron_7472latitude_5175inspiron_14_3467_firmwareprecision_3620_firmwareoptiplex_3280_firmwarevostro_15_3568embedded_box_pc_5000inspiron_3580vostro_3267_firmwarevostro_3470_firmwareg3_3579inspiron_7386_firmwareoptiplex_7080alienware_aurora_r9alienware_area_51m_r2_firmwareoptiplex_7440latitude_5480alienware_15_r3vostro_5471_firmwareoptiplex_7470optiplex_3046xps_15_9575_firmwarelatitude_7210_firmwareinspiron_15_5582_firmwarealienware_x15_r1_firmwarelatitude_7300_firmwarelatitude_5510wyse_5470inspiron_5481precision_3440_firmwarealienware_x17_r1_firmwarexps_8930xps_27_7760inspiron_7786_firmwareprecision_3640_firmwareinspiron_15_5579vostro_15_3568_firmwarelatitude_7410latitude_5501_firmwarexps_27_7760_firmwareprecision_3430_firmwarelatitude_5411optiplex_7450_firmwareoptiplex_7450inspiron_15_3567_firmwareg3_3579_firmwarevostro_15_5568_firmwarelatitude_3480_firmwarelatitude_3189_firmwarexps_13_9360_firmwarealienware_17_r5optiplex_7760_firmwareinspiron_14_5468_firmwareinspiron_7591_firmwarelatitude_5290alienware_aurora_r7latitude_5289_firmwarechengming_3980_firmwarelatitude_5590_firmwareinspiron_15_7572_firmwarevostro_5481_firmwarelatitude_rugged_5414vostro_3267inspiron_14_3467inspiron_3671precision_5540alienware_17_r4precision_3930inspiron_3480latitude_3490inspiron_3670latitude_3300_firmwarevostro_5471alienware_15_r4_firmwarevostro_5581latitude_7200_firmwareg7_7790_firmwarelatitude_5510_firmwareinspiron_3670_firmwarevostro_15_7570latitude_e5570_firmwareprecision_3540_firmwareinspiron_7777_firmwareoptiplex_3046_firmwarelatitude_3380latitude_7210latitude_5289precision_7820vostro_3471_firmwareoptiplex_3080_firmwareoptiplex_3240precision_5510_firmwarelatitude_rugged_7220inspiron_3881xps_13_9380alienware_area_51m_r2latitude_5490_firmwarelatitude_5591_firmwarealienware_13_r3_firmwarelatitude_5310_firmwarevostro_3070inspiron_5481_firmwareprecision_5520_firmwarechengming_3988xps_15_7590inspiron_3477latitude_3300latitude_5580precision_5540_firmwareinspiron_3277_firmwareinspiron_5401_firmwarexps_8940_firmwareinspiron_3268_firmwarevostro_3480latitude_rugged_7220_firmwareprecision_3640alienware_17_r4_firmwarelatitude_rugged_7220exg5_5587latitude_3580_firmwarevostro_3470alienware_aurora_r9_firmwareoptiplex_3070inspiron_3280optiplex_3040precision_5720latitude_7290_firmwareoptiplex_5270_firmwareprecision_7530inspiron_5370_firmwarelatitude_3551_firmwarexps_8930_firmwarechengming_3977_firmwareoptiplex_7470_firmwareoptiplex_7460g7_7590_firmwarexps_15_7590_firmwareembedded_box_pc_5000_firmwareinspiron_15_7573optiplex_7050precision_3431_firmwareprecision_3510vostro_14_3478xps_13_9380_firmwareinspiron_13_5379latitude_5288latitude_7490optiplex_7060_firmwareg3_3779precision_5820_firmwareinspiron_5401optiplex_5250vostro_3667_firmwarealienware_aurora_ryzen_editioninspiron_15_7577_firmwarevostro_15_7570_firmwareCPG BIOS
CWE ID-CWE-20
Improper Input Validation
CVE-2018-1184
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.7||MEDIUM
EPSS-1.13% / 62.37%
||
7 Day CHG~0.00%
Published-03 Feb, 2018 | 01:00
Updated-05 Aug, 2024 | 03:51
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Boxmgmt CLI may allow a malicious user with boxmgmt privileges to bypass Boxmgmt CLI and run arbitrary commands with root privileges.

Action-Not Available
Vendor-n/aDell Inc.
Product-emc_recoverpointemc_recoverpoint_for_virtual_machinesEMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, EMC RecoverPoint versions prior to 5.0.1.3
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2021-21552
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-5.2||MEDIUM
EPSS-1.00% / 58.37%
||
7 Day CHG~0.00%
Published-21 May, 2021 | 20:05
Updated-16 Sep, 2024 | 23:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the affected system.

Action-Not Available
Vendor-Microsoft CorporationDell Inc.
Product-wyse_5070_thin_clientwyse_5470_all-in-one_thin_clientwyse_5470_thin_clientwindows_10Wyse Windows Embedded (WES)
CWE ID-CWE-863
Incorrect Authorization
CVE-2021-21557
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-8.1||HIGH
EPSS-0.35% / 26.55%
||
7 Day CHG+0.01%
Published-14 Jun, 2021 | 19:10
Updated-16 Sep, 2024 | 17:02
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerEdge Server BIOS and select Dell Precision Rack BIOS contain an out-of-bounds array access vulnerability. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of service, arbitrary code execution, or information disclosure in System Management Mode.

Action-Not Available
Vendor-Dell Inc.
Product-poweredge_r7515poweredge_m640ppoweredge_t140_firmwarepoweredge_r6515_firmwarepoweredge_r240poweredge_r7515_firmwarepoweredge_r440_firmwarepoweredge_m640poweredge_mx740c_firmwarepoweredge_r640_firmwarepoweredge_t440poweredge_m640p_firmwarepoweredge_r940xa_firmwarepoweredge_r7525_firmwarepoweredge_mx840cpoweredge_r6525poweredge_t640poweredge_mx740cpoweredge_r7525poweredge_r840_firmwarepoweredge_c4140_firmwarepoweredge_r940poweredge_r540poweredge_m640_firmwarepoweredge_mx840c_firmwarepoweredge_r540_firmwarepoweredge_r740xdpoweredge_r740_firmwarepoweredge_t340_firmwarepoweredge_r6415poweredge_r440poweredge_r740xd2_firmwarepoweredge_r340_firmwarepoweredge_c6525_firmwarepoweredge_c6525poweredge_xr2_firmwarepoweredge_r6515poweredge_r940xapoweredge_r340poweredge_r6415_firmwarepoweredge_r6525_firmwarepoweredge_c6420poweredge_fc640_firmwarepoweredge_r640poweredge_t640_firmwarepoweredge_c6420_firmwarepoweredge_r740xd2poweredge_r840poweredge_r7415_firmwarepoweredge_r7425poweredge_fc640poweredge_t340poweredge_r240_firmwarepoweredge_r7415poweredge_r7425_firmwarepoweredge_c4140poweredge_r940_firmwarepoweredge_t440_firmwarepoweredge_r740xd_firmwarepoweredge_t140poweredge_r740poweredge_xr2PowerEdge BIOS Intel 15G
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-125
Out-of-bounds Read
CVE-2021-21554
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.1||MEDIUM
EPSS-0.34% / 25.47%
||
7 Day CHG~0.00%
Published-14 Jun, 2021 | 19:10
Updated-16 Sep, 2024 | 16:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service, arbitrary code execution, or information disclosure in UEFI or BIOS Preboot Environment.

Action-Not Available
Vendor-Dell Inc.
Product-poweredge_r740_firmwarepoweredge_r940xapoweredge_mx740c_firmwareprecision_7920_firmwarepoweredge_r640_firmwareprecision_7920poweredge_r940xa_firmwarepoweredge_r640poweredge_r840poweredge_mx840cpoweredge_mx740cpoweredge_r940_firmwarepoweredge_r840_firmwarepoweredge_r740xd_firmwarepoweredge_r940poweredge_r740poweredge_mx840c_firmwarepoweredge_r740xdPowerEdge BIOS Intel 15G
CWE ID-CWE-122
Heap-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2021-21526
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6||MEDIUM
EPSS-0.29% / 20.46%
||
7 Day CHG~0.00%
Published-20 Apr, 2021 | 16:45
Updated-17 Sep, 2024 | 00:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerScale OneFS 8.1.0 - 9.1.0 contains a privilege escalation in SmartLock compliance mode that may allow compadmin to execute arbitrary commands as root.

Action-Not Available
Vendor-Dell Inc.
Product-powerscale_onefsPowerScale OneFS
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2021-21556
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.1||MEDIUM
EPSS-0.31% / 22.31%
||
7 Day CHG~0.00%
Published-14 Jun, 2021 | 19:10
Updated-17 Sep, 2024 | 01:40
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service, arbitrary code execution, or information disclosure in UEFI or BIOS Preboot Environment.

Action-Not Available
Vendor-Dell Inc.
Product-poweredge_r740_firmwarepoweredge_r940xapoweredge_mx740c_firmwarepoweredge_r640_firmwarepoweredge_r940xa_firmwarepoweredge_r640poweredge_t640_firmwarepoweredge_r840poweredge_mx840cpoweredge_t640poweredge_mx740cpoweredge_r940_firmwarepoweredge_r840_firmwarepoweredge_r740xd_firmwarepoweredge_r940poweredge_r740poweredge_mx840c_firmwarepoweredge_r740xdPowerEdge BIOS Intel 15G
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-787
Out-of-bounds Write
CVE-2020-5363
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-8.6||HIGH
EPSS-0.33% / 24.65%
||
7 Day CHG~0.00%
Published-10 Jun, 2020 | 20:40
Updated-16 Sep, 2024 | 20:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Select Dell Client Consumer and Commercial platforms include an issue that allows the BIOS Admin password to be changed through Dell's manageability interface without knowledge of the current BIOS Admin password. This could potentially allow an unauthorized actor, with physical access and/or OS administrator privileges to the device, to gain privileged access to the platform and the hard drive.

Action-Not Available
Vendor-Dell Inc.
Product-latitude_7300latitude_5401precision_7740_firmwareprecision_3541precision_3541_firmwarelatitude_5401_firmwareprecision_7540_firmwarelatitude_5500_firmwareprecision_3540_firmwarelatitude_5300_firmwarexps_13_9300xps_7390_2-in-1_firmwarelatitude_7300_firmwarelatitude_5500latitude_7400latitude_5400_firmwarelatitude_7200_2_in_1_firmwarelatitude_7220_firmwareprecision_7540precision_7740latitude_7220ex_rugged_extreme_tabletxps_7590_firmwarelatitude_7220ex_rugged_extreme_tablet_firmwarexps_7590latitude_7220latitude_7200_2_in_1latitude_5501latitude_5300latitude_7400_firmwareprecision_3540xps_13_9300_firmwarexps_7390_2-in-1latitude_5501_firmwarelatitude_5300_2-in-1latitude_5300_2-in-1_firmwarelatitude_5400Dell Client Consumer and Commercial platforms
CWE ID-CWE-158
Improper Neutralization of Null Byte or NUL Character
CVE-2018-11072
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.8||HIGH
EPSS-0.41% / 32.94%
||
7 Day CHG~0.00%
Published-02 Oct, 2018 | 13:00
Updated-16 Sep, 2024 | 19:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. A local authenticated malicious user with advance knowledge of the application workflow could potentially load and execute a malicious DLL with administrator privileges.

Action-Not Available
Vendor-Dell Inc.
Product-digital_deliveryDell Digital Delivery
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-32481
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.8||HIGH
EPSS-0.23% / 14.25%
||
7 Day CHG~0.00%
Published-07 Jul, 2022 | 22:05
Updated-17 Sep, 2024 | 04:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerProtect Cyber Recovery, versions prior to 19.11, contain a privilege escalation vulnerability on virtual appliance deployments. A lower-privileged authenticated user can chain docker commands to escalate privileges to root leading to complete system takeover.

Action-Not Available
Vendor-Dell Inc.
Product-powerprotect_cyber_recoveryCyber Recovery
CVE-2022-29092
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.8||HIGH
EPSS-0.36% / 27.70%
||
7 Day CHG~0.00%
Published-10 Jun, 2022 | 20:05
Updated-17 Sep, 2024 | 02:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability. A non-admin user can exploit the vulnerability and gain admin access to the system.

Action-Not Available
Vendor-Dell Inc.
Product-supportassist_for_business_pcssupportassist_for_home_pcsSupportAssist Consumer
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-26865
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6.8||MEDIUM
EPSS-0.29% / 20.89%
||
7 Day CHG~0.00%
Published-26 May, 2022 | 15:20
Updated-16 Sep, 2024 | 23:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. An unauthenticated attacker with physical access to the system may exploit this vulnerability by bypassing OS Recovery authentication in order to run arbitrary code on the system as Administrator.

Action-Not Available
Vendor-Dell Inc.
Product-supportassist_os_recoveryDell OS Recovery Tool
CWE ID-CWE-288
Authentication Bypass Using an Alternate Path or Channel
CWE ID-CWE-287
Improper Authentication
CVE-2022-24419
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-8.2||HIGH
EPSS-0.27% / 19.23%
||
7 Day CHG~0.00%
Published-11 Mar, 2022 | 21:45
Updated-16 Sep, 2024 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.

Action-Not Available
Vendor-Dell Inc.
Product-alienware_m15_r4_firmwarealienware_m17_r4_firmwarealienware_x17_r1alienware_15_r3inspiron_3465latitude_3379_firmwareedge_gateway_3000alienware_m17_r3inspiron_15_5566vostro_3669edge_gateway_5100_firmwarewyse_7040_thin_client_firmwarevostro_3268_firmwareinspiron_3482_firmwarevostro_3660alienware_aurora_r8alienware_x15_r1_firmwarealienware_x15_r1embedded_box_pc_3000inspiron_3277wyse_7040_thin_clientvostro_14_5468_firmwarealienware_15_r3_firmwarealienware_15_r4vostro_3572_firmwareinspiron_3482alienware_m17_r4alienware_area_51m_r1_firmwarealienware_m17_r2inspiron_3510_firmwarealienware_area_51m_r2alienware_x17_r1_firmwarealienware_aurora_r8_firmwarexps_8930vostro_3572vostro_3669_firmwarealienware_m15_r3_firmwarealienware_13_r3_firmwareinspiron_3782_firmwarealienware_m17_r3_firmwareedge_gateway_5000vostro_14_5468alienware_m15_r4vostro_3668_firmwareinspiron_3565_firmwareinspiron_3477alienware_13_r3vostro_3667inspiron_3510latitude_3379edge_gateway_3000_firmwareinspiron_3277_firmwarevostro_3660_firmwarevostro_15_5568_firmwarevostro_15_5568alienware_17_r5alienware_m15_r2_firmwareinspiron_15_3573_firmwarealienware_area_51m_r1inspiron_3782inspiron_3582alienware_17_r4_firmwarealienware_m15_r2inspiron_3565edge_gateway_5000_firmwarevostro_3582_firmwareinspiron_3582_firmwarealienware_m17_r2_firmwareinspiron_3465_firmwareinspiron_3502_firmwarevostro_3267edge_gateway_5100xps_8930_firmwareinspiron_3477_firmwarealienware_17_r4inspiron_15_3573inspiron_14_3473vostro_3268embedded_box_pc_5000_firmwareembedded_box_pc_5000embedded_box_pc_3000_firmwarealienware_m15_r3inspiron_3502vostro_3267_firmwareinspiron_14_3473_firmwarealienware_15_r4_firmwarevostro_3582vostro_3667_firmwareinspiron_15_5566_firmwarealienware_area_51m_r2_firmwarealienware_17_r5_firmwarevostro_3668CPG BIOS
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2022-24417
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.23% / 14.04%
||
7 Day CHG~0.00%
Published-26 May, 2022 | 15:20
Updated-16 Sep, 2024 | 20:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.

Action-Not Available
Vendor-Dell Inc.
Product-inspiron_5515_firmwarevostro_5515_firmwareinspiron_3180vostro_3515_firmwareinspiron_3185_firmwareinspiron_22-3275_firmwaredell_g5_5505_firmwareinspiron_3185inspiron_3585inspiron_7405_firmwareinspiron_5515inspiron_5675_firmwareinspiron_5415_firmwareinspiron_5405_firmwareinspiron_27_7775_firmwareinspiron_3505_firmwareinspiron_5585inspiron_5775_firmwareinspiron_7375_firmwareinspiron_5575_firmwareinspiron_3785vostro_5415inspiron_7415_firmwareinspiron_3515inspiron_5415inspiron_3785_firmwareinspiron_7415vostro_3405_firmwareinspiron_3195inspiron_24-3475vostro_3515inspiron_3515_firmwareinspiron_3180_firmwareinspiron_5575inspiron_24-3475_firmwareinspiron_3195_firmwareinspiron_5505inspiron_3505inspiron_3595inspiron_27_7775inspiron_5505_firmwarevostro_5515dell_g5_5505inspiron_3595_firmwareinspiron_7375inspiron_3585_firmwareinspiron_5485_firmwareinspiron_5585_firmwareinspiron_7405inspiron_22-3275inspiron_5675vostro_5415_firmwareinspiron_5405inspiron_5775vostro_3405inspiron_5485CPG BIOS
CWE ID-CWE-20
Improper Input Validation
CVE-2022-24416
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-8.2||HIGH
EPSS-0.27% / 19.23%
||
7 Day CHG~0.00%
Published-11 Mar, 2022 | 21:45
Updated-16 Sep, 2024 | 17:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.

Action-Not Available
Vendor-Dell Inc.
Product-alienware_m15_r4_firmwarealienware_m17_r4_firmwarealienware_x17_r1alienware_15_r3inspiron_3465latitude_3379_firmwareedge_gateway_3000alienware_m17_r3inspiron_15_5566vostro_3669edge_gateway_5100_firmwarewyse_7040_thin_client_firmwarevostro_3268_firmwareinspiron_3482_firmwarevostro_3660alienware_aurora_r8alienware_x15_r1_firmwarealienware_x15_r1embedded_box_pc_3000inspiron_3277wyse_7040_thin_clientvostro_14_5468_firmwarealienware_15_r3_firmwarealienware_15_r4vostro_3572_firmwareinspiron_3482alienware_m17_r4alienware_area_51m_r1_firmwarealienware_m17_r2inspiron_3510_firmwarealienware_area_51m_r2alienware_x17_r1_firmwarealienware_aurora_r8_firmwarexps_8930vostro_3572vostro_3669_firmwarealienware_m15_r3_firmwarealienware_13_r3_firmwareinspiron_3782_firmwarealienware_m17_r3_firmwareedge_gateway_5000vostro_14_5468alienware_m15_r4vostro_3668_firmwareinspiron_3565_firmwareinspiron_3477alienware_13_r3vostro_3667inspiron_3510latitude_3379edge_gateway_3000_firmwareinspiron_3277_firmwarevostro_3660_firmwarevostro_15_5568_firmwarevostro_15_5568alienware_17_r5alienware_m15_r2_firmwareinspiron_15_3573_firmwarealienware_area_51m_r1inspiron_3782inspiron_3582alienware_17_r4_firmwarealienware_m15_r2inspiron_3565edge_gateway_5000_firmwarevostro_3582_firmwareinspiron_3582_firmwarealienware_m17_r2_firmwareinspiron_3465_firmwareinspiron_3502_firmwarevostro_3267edge_gateway_5100xps_8930_firmwareinspiron_3477_firmwarealienware_17_r4inspiron_15_3573inspiron_14_3473vostro_3268embedded_box_pc_5000_firmwareembedded_box_pc_5000embedded_box_pc_3000_firmwarealienware_m15_r3inspiron_3502vostro_3267_firmwareinspiron_14_3473_firmwarealienware_15_r4_firmwarevostro_3582vostro_3667_firmwareinspiron_15_5566_firmwarealienware_area_51m_r2_firmwarealienware_17_r5_firmwarevostro_3668CPG BIOS
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-43589
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-6||MEDIUM
EPSS-0.44% / 35.62%
||
7 Day CHG~0.00%
Published-24 Jan, 2022 | 20:10
Updated-17 Sep, 2024 | 00:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. A locally authenticated user with high privileges may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the Unity underlying OS, with the privileges of the vulnerable application. Exploitation may lead to an elevation of privilege.

Action-Not Available
Vendor-Dell Inc.
Product-emc_unity_operating_environmentemc_unityvsa_operating_environmentemc_unity_xt_operating_environmentUnity
CWE ID-CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE ID-CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2021-36343
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.24% / 15.17%
||
7 Day CHG~0.00%
Published-24 Jan, 2022 | 20:10
Updated-23 Feb, 2026 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Action-Not Available
Vendor-Dell Inc.
Product-embedded_box_pc_5000_firmwarealienware_aurora_r12_firmwarealienware_17_r4_firmwarelatitude_7200_2-in-1_firmwareprecision_3561_firmwareinspiron_5477_aiodell_g15_5510inspiron_15_3573_firmwarevostro_5501vostro_3401inspiron_3580inspiron_3480optiplex_3240_all-in-onelatitude_7520inspiron_3470_firmwarelatitude_9510_firmwareinspiron_5301_firmwaredell_g5_5590_firmwarelatitude_5310_firmwarevostro_3669vostro_14_5471_firmwarelatitude_3320vostro_13_5370latitude_5410_firmwarelatitude_7410inspiron_7706_2-in-1dell_g5_5590inspiron_3880_firmwareoptiplex_xe3inspiron_5770inspiron_7400precision_7550latitude_5488vostro_5490_firmwarelatitude_rugged_7424inspiron_5598latitude_7275_2-in-1_firmwareinspiron_5583_firmwarelatitude_3551_firmwareprecision_3440_firmwareinspiron_13_7378vostro_14_3478_firmwareinspiron_15_5578_firmwarelatitude_5500_firmwarealienware_area_51m_r1_firmwaredell_g7_7587_firmwarelatitude_e5470_firmwarevostro_3690optiplex_5250_firmwareinspiron_3490_firmwareoptiplex_7490_aiolatitude_5511_firmwareinspiron_3462_firmwareoptiplex_7460_all_in_onelatitude_3190_2-in-1latitude_5480_firmwareinspiron_5401inspiron_7400_firmwareprecision_7560inspiron_5590precision_3620_tower_firmwareoptiplex_7450_firmwareinspiron_7386inspiron_15_7573vostro_3562latitude_rugged_5424dell_g3_3590latitude_7310latitude_3500vostro_3470inspiron_7506_2-in-1_firmwarevostro_14_5468inspiron_3480_aioprecision_3930_rack_firmwareinspiron_7791latitude_5300_firmwaredell_g5_5000_firmwarevostro_3881_firmwareprecision_5530_2-in-1latitude_7290latitude_7414_rugged_extremevostro_5481latitude_5290_2-in-1_firmwarealienware_aurora_r8latitude_3590inspiron_7610_firmwarealienware_aurora_r12latitude_3480_firmwareinspiron_15_5582latitude_rugged_7220latitude_7380_firmwarelatitude_12_5289_2-in-1vostro_3581_firmwareinspiron_5410inspiron_3671inspiron_5409_firmwareoptiplex_7050_firmwareoptiplex_7090_tower_firmwareinspiron_14_3473inspiron_14_3473_firmwareprecision_7740precision_3450vostro_5880_firmwareoptiplex_3240_all-in-one_firmwareprecision_5820_tower_firmwarelatitude_3400inspiron_7500alienware_x15_r1vostro_5502_firmwaredell_g3_3779inspiron_5408inspiron_5580_firmwareoptiplex_5070inspiron_5480latitude_5420_firmwareprecision_3540latitude_5591vostro_3660precision_3541precision_3620_towervostro_5590_firmwarevostro_3400optiplex_7440_aio_firmwareinspiron_5391latitude_5175_firmwarelatitude_7480latitude_7210_2-in-1_firmwarelatitude_7400_2-in-1_firmwareinspiron_7777_aiovostro_15_5510_firmwarevostro_3401_firmwarelatitude_5400_firmwareinspiron_3502optiplex_7070precision_3431_tower_firmwaredell_g15_5511_firmwareinspiron_5400_2-in-1_firmwareinspiron_3782_firmwarevostro_3481_firmwarelatitude_5590_firmwareoptiplex_7090_uff_firmwareoptiplex_3050_firmwarevostro_3890optiplex_7780_all-in-onechengming_3980_firmwareprecision_5750_firmwareoptiplex_3046inspiron_5401_firmwarevostro_15_3578_firmwarevostro_3669_firmwarelatitude_9410inspiron_3593vostro_15_7580inspiron_7590precision_3520vostro_14_3468_firmwarealienware_15_r3_firmwareprecision_5510_firmwaredell_g5_5090dell_g7_7700vostro_15_3568alienware_m15_r4latitude_7480_firmwarelatitude_e5570latitude_7400_2-in-1alienware_m15_r1latitude_13_7390_2-in-1vostro_5090inspiron_3780_firmwarelatitude_5590alienware_13_r3_firmwarelatitude_5501latitude_rugged_7220exvostro_3670latitude_3400_firmwaredell_g3_3579vostro_5890latitude_7300optiplex_5080inspiron_3880latitude_5591_firmwarevostro_3582_firmwarelatitude_5501_firmwareinspiron_13_7370optiplex_5490_aiovostro_5581_firmwarelatitude_e5570_firmwareinspiron_3268vostro_3671_firmwarevostro_5402_firmwareinspiron_5580precision_7540vostro_15_5510precision_5540_firmwarevostro_3583inspiron_3477_aio_firmwareoptiplex_7070_uff_firmwareinspiron_7790_firmwarevostro_5591_firmwarealienware_m15_r3alienware_m17_r4_firmwarelatitude_5510inspiron_5481_firmwareprecision_3440inspiron_7380_firmwaredell_g7_7500_firmwareinspiron_13_7370_firmwarelatitude_5401vostro_5301latitude_rugged_7220_firmwarevostro_5490alienware_17_r5_firmwarelatitude_7320dell_g15_5511inspiron_3482_firmwareinspiron_5482_firmwarevostro_3584inspiron_15_7572_firmwarelatitude_e5270optiplex_3070latitude_3301vostro_3400_firmwareoptiplex_5040_firmwarevostro_5300inspiron_15_3567_firmwareinspiron_14_5410_firmwareinspiron_3472_firmwareinspiron_7786optiplex_7071alienware_area_51m_r1latitude_13_7389_2-in-1_firmwarelatitude_e5270_firmwareprecision_7730vostro_3890_firmwareinspiron_5406_2-in-1_firmwarelatitude_5580inspiron_15_5518optiplex_3080vostro_5502vostro_15_3568_firmwareinspiron_5598_firmwareinspiron_5490inspiron_5584vostro_3481precision_7760vostro_3501precision_7730_firmwaredell_g7_7587inspiron_5406_2-in-1vostro_5391_firmwarelatitude_12_7280_ultrabooklatitude_7320_detachable_firmwareoptiplex_7070_uffalienware_x15_r1_firmwareprecision_3550inspiron_7586_firmwarelatitude_5290_firmwarelatitude_3520latitude_3510inspiron_5593precision_5820_towerlatitude_5520inspiron_3670_firmwareinspiron_14_3467_firmwareoptiplex_3090latitude_5411_firmwareinspiron_13_7000_firmwarelatitude_5290_2-in-1inspiron_3668_firmwareoptiplex_7050inspiron_5300optiplex_7780_all-in-one_firmwarelatitude_5285_2-in-1optiplex_5260_all-in-oneinspiron_7501_firmwarevostro_3583_firmwareinspiron_5477_aio_firmwareinspiron_5391_firmwareinspiron_7580_firmwareoptiplex_7440_aioinspiron_7390_firmwarealienware_15_r3optiplex_5040precision_5510alienware_aurora_r11latitude_5401_firmwareinspiron_15_5566inspiron_15_gaming_7577_firmwaredell_g5_5500latitude_13_7370_ultrabookalienware_17_r5latitude_14_rugged_5414vostro_3671inspiron_5402_firmwareinspiron_7590_firmwarelatitude_5500inspiron_3582inspiron_7591_firmwareoptiplex_5270_all-in-onevostro_7500_firmwareinspiron_3472optiplex_3060_firmwarelatitude_5179_firmwareprecision_7530inspiron_5493_firmwareinspiron_5591_2-in-1_firmwarevostro_15_3572inspiron_3668precision_7560_firmwareinspiron_3881_firmwareinspiron_7490_firmwareprecision_5720_aiovostro_3501_firmwareinspiron_3476_firmwareinspiron_3781_firmwareinspiron_3790_firmwarelatitude_12_rugged_extreme_7214inspiron_3462vostro_15_5410_firmwareinspiron_3511_firmwarevostro_3668latitude_5421latitude_5280latitude_rugged_5420latitude_3310inspiron_5508precision_3240_cffinspiron_5491_2-in-1_firmwareoptiplex_3050_aio_firmwareoptiplex_5480_all-in-one_firmwarealienware_m17_r1_firmwareinspiron_5593_firmwarelatitude_5480vostro_5591inspiron_5481vostro_7510_firmwareoptiplex_3060inspiron_5310_firmwareinspiron_5491_2-in-1dell_g7_7700_firmwareinspiron_3471_firmwarelatitude_3420_firmwarevostro_5090_firmwareoptiplex_7480_all-in-oneoptiplex_3070_firmwarevostro_3581inspiron_13_7000vostro_5301_firmwarevostro_15_5410latitude_5490precision_5530latitude_7380inspiron_3481inspiron_3510inspiron_7391_firmwareinspiron_17_7773_firmwarealienware_area_51m_r2_firmwareoptiplex_3090_firmwarevostro_5300_firmwarevostro_5310_firmwareinspiron_5584_firmwarevostro_7590latitude_5175vostro_5590alienware_m17_r1precision_5530_2-in-1_firmwareinspiron_3502_firmwarelatitude_3570_firmwareinspiron_7391inspiron_7390latitude_9420_firmwareinspiron_5480_firmwarevostro_14_3468dell_g15_5510_firmwarevostro_3490_firmwaredell_g7_7588_firmwareinspiron_5370precision_3560_firmwaredell_g7_7500optiplex_5080_firmwarealienware_m17_r3_firmwareinspiron_13_5379latitude_5510_firmwaredell_g5_5090_firmwarevostro_3888_firmwareinspiron_15_5518_firmwarealienware_x17_r1_firmwareinspiron_3671_firmwarelatitude_3490latitude_3510_firmwareinspiron_5300_firmwarelatitude_3190vostro_15_7570alienware_15_r4precision_7920_tower_firmwareinspiron_7501inspiron_5502_firmwarelatitude_5320_firmwareinspiron_13_7373_firmwareinspiron_5490_aiooptiplex_3050_aiochengming_3988_firmwareinspiron_7706_2-in-1_firmwareinspiron_3576inspiron_13_5378inspiron_13_5378_firmwarechengming_3988latitude_12_7280_ultrabook_firmwareinspiron_3582_firmwarevostro_3582inspiron_3782latitude_12_5289_2-in-1_firmwarelatitude_5290inspiron_3490latitude_5421_firmwareprecision_7510alienware_area_51m_r2optiplex_5270_all-in-one_firmwareprecision_5520vostro_3580_firmwarelatitude_5420inspiron_13_7378_firmwaredell_g7_7790latitude_5285_2-in-1_firmwarevostro_3480_firmwareinspiron_7300_firmwarelatitude_5400inspiron_3280_firmwarelatitude_rugged_7220ex_firmwareprecision_3630_tower_firmwarealienware_m17_r4latitude_5320inspiron_5491_aio_firmwareinspiron_5409vostro_3590optiplex_5090_towerinspiron_3501inspiron_3482inspiron_7510_firmwarelatitude_3380_firmwarevostro_5401precision_7920_toweroptiplex_7460_all_in_one_firmwareinspiron_5509_firmwarevostro_3471vostro_14_5471inspiron_3780latitude_5288_firmwarevostro_3268_firmwarevostro_15_7580_firmwareinspiron_7510precision_3450_firmwareprecision_3541_firmwareinspiron_5570_firmwarealienware_15_r4_firmwaredell_g3_3500_firmwareinspiron_13_5379_firmwareprecision_3420_tower_firmwarechengming_3990_firmwareinspiron_5591_2-in-1latitude_7320_detachableinspiron_7306_2-in-1latitude_3580latitude_3380latitude_7210_2-in-1vostro_5391inspiron_5590_firmwareinspiron_7380optiplex_7470_all-in-oneinspiron_3480_firmwareinspiron_15_7572inspiron_3481_firmwarelatitude_3120_firmwareprecision_7510_firmwarelatitude_7290_firmwareinspiron_3580_firmwareinspiron_3576_firmwareinspiron_5402vostro_3580latitude_7410_firmwareinspiron_7791_firmwareinspiron_5493inspiron_5501_firmwarelatitude_3490_firmwarelatitude_13_7389_2-in-1precision_7540_firmwareoptiplex_5060latitude_7390precision_5550_firmwareinspiron_15_5566_firmwareprecision_7520latitude_e7470_firmwarelatitude_rugged_5420_firmwareprecision_7760_firmwareinspiron_7700_aio_firmwarelatitude_5491inspiron_14_5410inspiron_15_5579precision_7550_firmwareprecision_7720_firmwarevostro_15_3578vostro_15_7570_firmwaredell_g3_3779_firmwarelatitude_5490_firmwareoptiplex_7770_all-in-one_firmwarelatitude_3500_firmwareinspiron_3593_firmwarevostro_15_3572_firmwarealienware_aurora_r8_firmwarealienware_m15_r2optiplex_7770_all-in-onedell_g3_3500latitude_3520_firmwarelatitude_7490_firmwareoptiplex_7760_aioinspiron_3277_aiolatitude_5310latitude_3470vostro_3590_firmwarelatitude_7390_firmwareinspiron_5400_aio_firmwarelatitude_3480chengming_3980inspiron_3590_firmwareinspiron_5400_aiochengming_3990inspiron_3471inspiron_13_7373precision_7530_firmwareinspiron_5301latitude_12_rugged_tablet_7212optiplex_7080inspiron_3493_firmwarevostro_3470_firmwareinspiron_7506_2-in-1inspiron_7300_2-in-1_firmwareinspiron_3470inspiron_3268_firmwarelatitude_3190_2-in-1_firmwarevostro_3681latitude_3320_firmwareinspiron_7306_2-in-1_firmwareoptiplex_5060_firmwareoptiplex_5050inspiron_3476chengming_3977_firmwareinspiron_5501optiplex_5090_tower_firmwareinspiron_7472latitude_14_rugged_5414_firmwareinspiron_5594_firmwarevostro_3510chengming_3991inspiron_3781inspiron_15_7570inspiron_15_3567vostro_3667_firmwarelatitude_3189_firmwarelatitude_3180_firmwareoptiplex_3050optiplex_3280_all-in-one_firmwarevostro_3490latitude_12_rugged_tablet_7212_firmwarelatitude_3379_firmwareprecision_7520_firmwarevostro_3670_firmwarelatitude_3310_2-in-1latitude_5300_2-in-1latitude_5179latitude_7490latitude_3570inspiron_7591inspiron_5594inspiron_3511latitude_3180latitude_3190_firmwarevostro_3268latitude_e7470vostro_3584_firmwarelatitude_3300_firmwareprecision_7710_firmwarevostro_5401_firmwarelatitude_7414_rugged_extreme_firmwareprecision_3630_towervostro_3070_firmwarevostro_15_5568_firmwarelatitude_7275_2-in-1precision_3640vostro_13_5370_firmwarelatitude_7300_firmwareoptiplex_3280_all-in-oneoptiplex_7090_uffvostro_5481_firmwaredell_g7_7590_firmwarevostro_5890_firmwareinspiron_5498latitude_7400_firmwareinspiron_3280vostro_3510_firmwareoptiplex_5250inspiron_3881inspiron_3501_firmwareoptiplex_7080_firmwarelatitude_5491_firmwarelatitude_9420dell_g5_5500_firmwarelatitude_rugged_5424_firmwareoptiplex_7760_aio_firmwareinspiron_15_7573_firmwarevostro_3660_firmwareinspiron_5491_aiovostro_3681_firmwarelatitude_3590_firmwareoptiplex_5490_aio_firmwarealienware_aurora_r11_firmwarelatitude_5520_firmwareinspiron_5498_firmwarelatitude_9520_firmwarelatitude_13_7390_2-in-1_firmwareoptiplex_3046_firmwareinspiron_5410_firmwareprecision_7750_firmwarevostro_3267_firmwareinspiron_3581_firmwarelatitude_rugged_7424_firmwaredell_g3_3590_firmwarelatitude_12_7285alienware_m15_r2_firmwareprecision_3430_tower_firmwareinspiron_5390_firmwarelatitude_3379latitude_7420_firmwarevostro_5491inspiron_3480_aio_firmwareoptiplex_7040_firmwareprecision_7710alienware_m15_r1_firmwarealienware_13_r3optiplex_7490_aio_firmwarelatitude_7310_firmwareinspiron_15_gaming_7577vostro_3562_firmwarevostro_14_5468_firmwarelatitude_12_rugged_extreme_7214_firmwarelatitude_3551vostro_5390_firmwarelatitude_5300_2-in-1_firmwareprecision_3420_towerinspiron_3581latitude_3410precision_3520_firmwareinspiron_5494latitude_5310_2_in_1vostro_5501_firmwarelatitude_9410_firmwareinspiron_7500_2-in-1latitude_5411vostro_3471_firmwareinspiron_7580inspiron_3891_firmwareinspiron_5770_firmwarevostro_3070latitude_7320_firmwareoptiplex_5480_all-in-oneoptiplex_xe3_firmwareinspiron_15_3573precision_5530_firmwareinspiron_7300inspiron_3891optiplex_3040_firmwareembedded_box_pc_5000optiplex_7450vostro_5402vostro_14_3478inspiron_7777_aio_firmwareprecision_3240_cff_firmwareinspiron_5509vostro_3500inspiron_7790precision_3430_towerinspiron_5390latitude_3390latitude_5300inspiron_17_7773latitude_5521_firmwareinspiron_7300_2-in-1latitude_3300optiplex_5070_firmwarealienware_17_r4vostro_5310vostro_7510vostro_3500_firmwarevostro_7500inspiron_7386_firmwarevostro_3690_firmwarealienware_m15_r3_firmwareinspiron_3590latitude_5521latitude_9510optiplex_7070_firmwareoptiplex_7090_toweralienware_aurora_r9_firmwarelatitude_7400vostro_15_5568latitude_5288vostro_3881precision_3530precision_3930_rackinspiron_3670inspiron_5508_firmwareinspiron_7500_2-in-1_firmwareoptiplex_5050_firmwarelatitude_5488_firmwareinspiron_3790alienware_m15_r4_firmwarechengming_3977optiplex_3040optiplex_3080_firmwareinspiron_7472_firmwareinspiron_5401_aio_firmwarelatitude_3470_firmwareprecision_7720inspiron_5401_aiolatitude_3420inspiron_14_3467inspiron_5583latitude_3310_firmwareoptiplex_7480_all-in-one_firmwareinspiron_3793_firmwarelatitude_3410_firmwaredell_g7_7588precision_5720_aio_firmwarelatitude_5511precision_3510precision_7820_tower_firmwareinspiron_5408_firmwarelatitude_3189latitude_7200_2-in-1vostro_3668_firmwareprecision_3510_firmwareprecision_7820_towerinspiron_15_5582_firmwarealienware_m17_r3inspiron_15_7570_firmwarealienware_x17_r1dell_g7_7590inspiron_5400_2-in-1inspiron_5482inspiron_7700_aiovostro_7590_firmwarealienware_m17_r2latitude_5410latitude_7420optiplex_5260_all-in-one_firmwareprecision_5520_firmwareinspiron_5494_firmwareinspiron_5310precision_3640_firmwarelatitude_5280_firmwareinspiron_5490_aio_firmwareoptiplex_7060inspiron_3510_firmwareprecision_5550vostro_3888precision_3560latitude_3301_firmwarelatitude_e7270latitude_3120precision_3540_firmwarelatitude_12_7285_firmwareoptiplex_7040precision_3550_firmwareinspiron_15_5579_firmwareoptiplex_7470_all-in-one_firmwareprecision_7750alienware_aurora_r9dell_g3_3579_firmwarelatitude_3580_firmwareinspiron_5570precision_3530_firmwareprecision_7740_firmwaredell_g5_5000vostro_5491_firmwareinspiron_7586vostro_5390precision_3431_towerprecision_3561vostro_5880inspiron_3793latitude_3390_firmwareinspiron_15_5578inspiron_5680vostro_3667latitude_e7270_firmwareprecision_5750inspiron_7500_firmwareinspiron_7490chengming_3991_firmwareinspiron_3277_aio_firmwarelatitude_5580_firmwareinspiron_5680_firmwareoptiplex_7060_firmwareinspiron_7786_firmwareinspiron_5490_firmwarelatitude_7520_firmwarelatitude_3310_2-in-1_firmwarevostro_5581latitude_5310_2_in_1_firmwarelatitude_13_7370_ultrabook_firmwareinspiron_5370_firmwarealienware_m17_r2_firmwareinspiron_5502vostro_3480latitude_9520precision_5540inspiron_3493optiplex_7071_firmwarelatitude_e5470inspiron_7610dell_g7_7790_firmwarevostro_3267inspiron_3477_aioCPG BIOS
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-20
Improper Input Validation
CVE-2021-36277
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.8||HIGH
EPSS-0.17% / 6.76%
||
7 Day CHG~0.00%
Published-09 Aug, 2021 | 21:05
Updated-17 Sep, 2024 | 03:59
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Command | Update, Dell Update, and Alienware Update versions before 4.3 contains an Improper Verification of Cryptographic Signature Vulnerability. A local authenticated malicious user may exploit this vulnerability by executing arbitrary code on the system.

Action-Not Available
Vendor-Dell Inc.
Product-alienware_command_center_applicationcommand_\|_updateupdate\/alienware_updateAlienware Command Center (AWCC)
CWE ID-CWE-347
Improper Verification of Cryptographic Signature
CVE-2021-36325
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.5||HIGH
EPSS-0.23% / 14.09%
||
7 Day CHG~0.00%
Published-12 Nov, 2021 | 22:15
Updated-16 Sep, 2024 | 20:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Action-Not Available
Vendor-Dell Inc.
Product-inspiron_15_7570_firmwarelatitude_5401g7_7590inspiron_3470latitude_e7270optiplex_7770_firmwarevostro_3669inspiron_5491_firmwareprecision_7820_firmwareinspiron_5477_firmwarelatitude_5179inspiron_15_7577latitude_7380_firmwarevostro_3888xps_13_9370inspiron_5570vostro_3888_firmwarewyse_7040latitude_e5270precision_7540alienware_15_r3_firmwareprecision_3420wyse_5070inspiron_5490_firmwarealienware_area_51m_r1_firmwarelatitude_5590optiplex_5080latitude_5511inspiron_7580_firmwarealienware_m15_r1_firmwareprecision_7720precision_7920alienware_m17_r3_firmwarelatitude_5300vostro_5581_firmwarelatitude_3380_firmwareprecision_5530_firmwareoptiplex_5040latitude_rugged_5420vostro_15_7580inspiron_14_5468optiplex_5050alienware_aurora_r11latitude_3470latitude_7300g5_5590xps_13_9360vostro_14_3478_firmwareoptiplex_3060_firmwarelatitude_3590_firmwarelatitude_7490_firmwarealienware_m15_r2precision_5520latitude_7400latitude_5591precision_3620precision_5820inspiron_3471latitude_3390optiplex_5050_firmwareprecision_7520_firmwareoptiplex_7071_firmwarelatitude_5175_firmwareinspiron_7586optiplex_3040_firmwareoptiplex_5070precision_3630_firmwareprecision_3430g5_5000inspiron_7700inspiron_13_5378_firmwarelatitude_7285_firmwarexps_13_9370_firmwarevostro_3581_firmwarelatitude_7275vostro_3581xps_15_9575latitude_9410inspiron_7777optiplex_7070latitude_3570optiplex_7080_firmwareoptiplex_5480_firmwareinspiron_15_5578_firmwarelatitude_5310latitude_rugged_7424_firmwarevostro_3268_firmwarevostro_3660alienware_aurora_r8alienware_x15_r1inspiron_5400latitude_7480_firmwarevostro_14_5468_firmwarelatitude_e5470_firmwarechengming_3977vostro_5090latitude_3190vostro_5370alienware_aurora_r8_firmwareinspiron_5580_firmwareinspiron_3881_firmwarelatitude_rugged_7424latitude_5488g3_3590optiplex_5260latitude_7380precision_3540alienware_aurora_r11_firmwarevostro_14_5468optiplex_7780optiplex_3280xps_15_9560inspiron_3580_firmwareinspiron_3781_firmwarevostro_5370_firmwarewyse_5070_firmwarevostro_3670_firmwarelatitude_7275_firmwareinspiron_3280_firmwarelatitude_3310precision_7520vostro_15_3578_firmwarevostro_3660_firmwareinspiron_5482latitude_7290g7_7587_firmwarealienware_area_51m_r1precision_7540_firmwareoptiplex_7760latitude_7480vostro_3881wyse_5470_firmwareinspiron_7580inspiron_3668inspiron_5770alienware_m17_r2_firmwarelatitude_3580inspiron_3668_firmwarelatitude_5285optiplex_7780_firmwareinspiron_5480_firmwarelatitude_3551optiplex_xe3_firmwareinspiron_7590vostro_5880vostro_3268optiplex_7070_firmwarevostro_3584optiplex_xe3precision_5510inspiron_7370precision_3240vostro_3481_firmwarelatitude_5491optiplex_3240_firmwareoptiplex_7040inspiron_7386alienware_aurora_r12latitude_7280latitude_5400latitude_5410inspiron_7373_firmwareprecision_3541xps_8940optiplex_7050_firmwareprecision_7730_firmwarelatitude_3379_firmwarelatitude_5401_firmwarealienware_m17_r3precision_7730inspiron_7380precision_3240_firmwarelatitude_7285latitude_5400_firmwareprecision_3420_firmwarevostro_3671_firmwareprecision_3440latitude_rugged_7220ex_firmwareprecision_7510_firmwareg5_5000_firmwareoptiplex_7460_firmwareoptiplex_5250_firmwareinspiron_5680_firmwarealienware_m15_r3_firmwareinspiron_3576inspiron_3671_firmwareprecision_3550_firmwarevostro_3668_firmwarelatitude_3310_firmwarevostro_15_7580_firmwareinspiron_3781inspiron_3576_firmwareg7_7588_firmwarelatitude_3570_firmwareoptiplex_3050_firmwareinspiron_7590_firmwarelatitude_rugged_5414_firmwareprecision_7740_firmwareinspiron_15_3567alienware_m15_r2_firmwarelatitude_7389vostro_3681inspiron_5570_firmwareinspiron_3481inspiron_3780_firmwareprecision_3530g7_7588latitude_5411_firmwareinspiron_3470_firmwareinspiron_5370inspiron_7467_firmwareprecision_7740inspiron_3481_firmwareprecision_5530latitude_7310_firmwareinspiron_15_5579_firmwarelatitude_9510inspiron_5770_firmwareinspiron_7586_firmwarelatitude_rugged_extreme_7214latitude_3180_firmwarevostro_3681_firmwarealienware_m17_r1_firmwarevostro_3580_firmwareinspiron_3581_firmwareinspiron_17_7773latitude_9510_firmwarelatitude_3490_firmwareprecision_5720_firmwareg7_7587vostro_3668optiplex_7770optiplex_5270latitude_7280_firmwarevostro_3670latitude_5280latitude_5179_firmwareinspiron_5490inspiron_15_5578latitude_5300_firmwareinspiron_3880inspiron_5580latitude_5480_firmwareinspiron_3277precision_7550xps_7590_firmwareoptiplex_3080alienware_m17_r1latitude_3480latitude_rugged_5424_firmwarevostro_3671inspiron_7591latitude_7310inspiron_7790g3_3590_firmwareinspiron_7790_firmwarealienware_13_r3latitude_3379vostro_3584_firmwarechengming_3990_firmwarevostro_15_5568precision_3520_firmwarechengming_3980inspiron_7567_firmwareoptiplex_7060vostro_14_3468_firmwarelatitude_5290_firmwareinspiron_13_5379_firmwareg5_5090_firmwarelatitude_7390latitude_3390_firmwareprecision_7750_firmwarealienware_aurora_r12_firmwareprecision_3431precision_7510vostro_3480_firmwarechengming_3991_firmwarevostro_7590_firmwareprecision_3510_firmwareinspiron_7370_firmwarelatitude_7389_firmwarelatitude_e7470optiplex_5040_firmwareinspiron_3581latitude_rugged_tablet_7212_firmwareoptiplex_7480inspiron_5400_firmwareinspiron_15_5566_firmwarelatitude_5488_firmwarealienware_17_r5_firmwareoptiplex_5480precision_3541_firmwarealienware_m15_r1precision_7920_firmwareinspiron_15_7572alienware_aurora_r7_firmwareinspiron_3476_firmwareinspiron_5680vostro_3881_firmwareinspiron_7373latitude_5511_firmwareinspiron_15_7573_firmwareoptiplex_7040_firmwareprecision_3550latitude_7370latitude_7370_firmwareoptiplex_7440_firmwareoptiplex_5070_firmwarealienware_15_r4latitude_5490alienware_m17_r2inspiron_7567vostro_3070_firmwarelatitude_rugged_extreme_7414xps_7590optiplex_7071vostro_3481inspiron_7786latitude_9410_firmwarevostro_7590latitude_e7270_firmwarelatitude_5280_firmwareg5_5587_firmwarelatitude_3180inspiron_3268latitude_e5470optiplex_3070_firmwarelatitude_7410_firmwarevostro_3667latitude_e7470_firmwareprecision_7720_firmwareinspiron_3476inspiron_13_5378inspiron_3780inspiron_7380_firmwarelatitude_7390_firmwarelatitude_5500_firmwareprecision_7710latitude_5410_firmwarevostro_5090_firmwareprecision_3520inspiron_17_7773_firmwareg7_7790latitude_e5570inspiron_3880_firmwareg5_5090optiplex_3050optiplex_5080_firmwareinspiron_15_7570latitude_e5270_firmwareoptiplex_7480_firmwarevostro_3471latitude_rugged_5420_firmwarelatitude_rugged_extreme_7214_firmwareinspiron_3480_firmwareg5_5590_firmwarealienware_m15_r3inspiron_7700_firmwareoptiplex_5060_firmwarelatitude_3470_firmwareprecision_7530_firmwarealienware_x17_r1latitude_rugged_5424vostro_3583_firmwareinspiron_15_5566latitude_3190_firmwarealienware_aurora_ryzen_edition_firmwareg3_3779_firmwarevostro_15_3578latitude_5500inspiron_15_5582precision_7550_firmwarewyse_7040_firmwarelatitude_5285_firmwareinspiron_5477chengming_3991latitude_5288_firmwarelatitude_rugged_extreme_7414_firmwareinspiron_5480inspiron_3471_firmwarevostro_3669_firmwarelatitude_5501latitude_7400_firmwareprecision_7710_firmwarelatitude_3590inspiron_7472_firmwareoptiplex_5260_firmwarechengming_3990vostro_3583latitude_5491_firmwarevostro_5880_firmwareprecision_3630xps_15_9560_firmwarevostro_14_3468optiplex_3060optiplex_5060chengming_3988_firmwareinspiron_5491inspiron_5482_firmwarevostro_5481inspiron_7467precision_3530_firmwareprecision_3930_firmwarelatitude_rugged_tablet_7212latitude_5580_firmwarelatitude_7200inspiron_3477_firmwarelatitude_3189vostro_3580precision_7750inspiron_7472latitude_5175inspiron_14_3467_firmwareprecision_3620_firmwareoptiplex_3280_firmwarevostro_15_3568embedded_box_pc_5000inspiron_3580vostro_3267_firmwarevostro_3470_firmwareg3_3579inspiron_7386_firmwareoptiplex_7080alienware_aurora_r9alienware_area_51m_r2_firmwareoptiplex_7440latitude_5480alienware_15_r3vostro_5471_firmwareoptiplex_7470optiplex_3046xps_15_9575_firmwarelatitude_7210_firmwareinspiron_15_5582_firmwarealienware_x15_r1_firmwarelatitude_7300_firmwarelatitude_5510wyse_5470inspiron_5481precision_3440_firmwarealienware_x17_r1_firmwarexps_8930xps_27_7760inspiron_7786_firmwareprecision_3640_firmwareinspiron_15_5579vostro_15_3568_firmwarelatitude_7410latitude_5501_firmwarexps_27_7760_firmwareprecision_3430_firmwarelatitude_5411optiplex_7450_firmwareoptiplex_7450inspiron_15_3567_firmwareg3_3579_firmwarevostro_15_5568_firmwarelatitude_3480_firmwarelatitude_3189_firmwarexps_13_9360_firmwarealienware_17_r5optiplex_7760_firmwareinspiron_14_5468_firmwareinspiron_7591_firmwarelatitude_5290alienware_aurora_r7latitude_5289_firmwarechengming_3980_firmwarelatitude_5590_firmwareinspiron_15_7572_firmwarevostro_5481_firmwarelatitude_rugged_5414vostro_3267inspiron_14_3467inspiron_3671precision_5540alienware_17_r4precision_3930inspiron_3480latitude_3490inspiron_3670latitude_3300_firmwarevostro_5471alienware_15_r4_firmwarevostro_5581latitude_7200_firmwareg7_7790_firmwarelatitude_5510_firmwareinspiron_3670_firmwarevostro_15_7570latitude_e5570_firmwareprecision_3540_firmwareinspiron_7777_firmwareoptiplex_3046_firmwarelatitude_3380latitude_7210latitude_5289precision_7820vostro_3471_firmwareoptiplex_3080_firmwareoptiplex_3240precision_5510_firmwarelatitude_rugged_7220inspiron_3881xps_13_9380alienware_area_51m_r2latitude_5490_firmwarelatitude_5591_firmwarealienware_13_r3_firmwarelatitude_5310_firmwarevostro_3070inspiron_5481_firmwareprecision_5520_firmwarechengming_3988xps_15_7590inspiron_3477latitude_3300latitude_5580precision_5540_firmwareinspiron_3277_firmwareinspiron_5401_firmwarexps_8940_firmwareinspiron_3268_firmwarevostro_3480latitude_rugged_7220_firmwareprecision_3640alienware_17_r4_firmwarelatitude_rugged_7220exg5_5587latitude_3580_firmwarevostro_3470alienware_aurora_r9_firmwareoptiplex_3070inspiron_3280optiplex_3040precision_5720latitude_7290_firmwareoptiplex_5270_firmwareprecision_7530inspiron_5370_firmwarelatitude_3551_firmwarexps_8930_firmwarechengming_3977_firmwareoptiplex_7470_firmwareoptiplex_7460g7_7590_firmwarexps_15_7590_firmwareembedded_box_pc_5000_firmwareinspiron_15_7573optiplex_7050precision_3431_firmwareprecision_3510vostro_14_3478xps_13_9380_firmwareinspiron_13_5379latitude_5288latitude_7490optiplex_7060_firmwareg3_3779precision_5820_firmwareinspiron_5401optiplex_5250vostro_3667_firmwarealienware_aurora_ryzen_editioninspiron_15_7577_firmwarevostro_15_7570_firmwareCPG BIOS
CWE ID-CWE-20
Improper Input Validation
CVE-2022-24426
Matching Score-8
Assigner-Dell
ShareView Details
Matching Score-8
Assigner-Dell
CVSS Score-7.8||HIGH
EPSS-0.23% / 13.83%
||
7 Day CHG~0.00%
Published-01 Apr, 2022 | 20:00
Updated-16 Sep, 2024 | 20:31
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Command | Update, Dell Update, and Alienware Update version 4.4.0 contains a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. A local malicious user could potentially exploit this vulnerability, leading to privilege escalation.

Action-Not Available
Vendor-Dell Inc.
Product-alienware_updatecommand_updateupdateDell Command Update (DCU)
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-24903
Matching Score-6
Assigner-Dell
ShareView Details
Matching Score-6
Assigner-Dell
CVSS Score-8||HIGH
EPSS-0.37% / 28.67%
||
7 Day CHG~0.00%
Published-01 Mar, 2024 | 13:30
Updated-20 May, 2025 | 18:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell Secure Connect Gateway (SCG) Policy Manager, version 5.10+, contain a weak password recovery mechanism for forgotten passwords. An adjacent network low privileged attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromised account. The attacker could retrieve the reset password token without authorization and then perform the password change.

Action-Not Available
Vendor-Dell Inc.
Product-policy_manager_for_secure_connect_gatewaySecure Connect Gateway (SCG) Policy Managersecure_connect_gateway_policy_manager
CWE ID-CWE-640
Weak Password Recovery Mechanism for Forgotten Password
CVE-2024-22454
Matching Score-6
Assigner-Dell
ShareView Details
Matching Score-6
Assigner-Dell
CVSS Score-8.8||HIGH
EPSS-0.56% / 42.47%
||
7 Day CHG~0.00%
Published-13 Feb, 2024 | 07:35
Updated-09 May, 2025 | 18:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromised account. The attacker could retrieve the reset password token without authorization and then perform the password change

Action-Not Available
Vendor-Dell Inc.
Product-powerprotect_data_managerPowerProtect Data Manager
CWE ID-CWE-640
Weak Password Recovery Mechanism for Forgotten Password
CVE-2019-12476
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-6.8||MEDIUM
EPSS-1.53% / 71.66%
||
7 Day CHG~0.00%
Published-17 Jun, 2019 | 17:02
Updated-04 Aug, 2024 | 23:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An authentication bypass vulnerability in the password reset functionality in Zoho ManageEngine ADSelfService Plus before 5.0.6 allows an attacker with physical access to gain a shell with SYSTEM privileges via the restricted thick client browser. The attack uses a long sequence of crafted keyboard input.

Action-Not Available
Vendor-n/aZoho Corporation Pvt. Ltd.Microsoft Corporation
Product-manageengine_adselfservice_pluswindowsn/a
CWE ID-CWE-640
Weak Password Recovery Mechanism for Forgotten Password
  • Previous
  • 1
  • 2
  • Next
Details not found