Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2022-34403
Modified
More InfoOfficial Page
Source-security_alert@emc.com
View Known Exploited Vulnerability (KEV) details
Published At-01 Feb, 2023 | 06:15
Updated At-07 Nov, 2023 | 03:48

Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.18.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Secondary3.17.5HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
CPE Matches
Dell Inc.
dell
>>alienware_m15_r6_firmware>>Versions before 1.17.0(exclusive)
cpe:2.3:o:dell:alienware_m15_r6_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m15_r6>>-
cpe:2.3:h:dell:alienware_m15_r6:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m15_r7_firmware>>Versions before 1.4.3(exclusive)
cpe:2.3:o:dell:alienware_m15_r7_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m15_r7>>-
cpe:2.3:h:dell:alienware_m15_r7:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m15_ryzen_edition_r5_firmware>>Versions before 1.8.0(exclusive)
cpe:2.3:o:dell:alienware_m15_ryzen_edition_r5_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m15_ryzen_edition_r5>>-
cpe:2.3:h:dell:alienware_m15_ryzen_edition_r5:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m17_r5_amd_firmware>>Versions before 1.4.3(exclusive)
cpe:2.3:o:dell:alienware_m17_r5_amd_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>alienware_m17_r5_amd>>-
cpe:2.3:h:dell:alienware_m17_r5_amd:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5510_firmware>>Versions before 1.16.0(exclusive)
cpe:2.3:o:dell:g15_5510_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5510>>-
cpe:2.3:h:dell:g15_5510:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5511_firmware>>Versions before 1.18.0(exclusive)
cpe:2.3:o:dell:g15_5511_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5511>>-
cpe:2.3:h:dell:g15_5511:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5515_firmware>>Versions before 1.8.0(exclusive)
cpe:2.3:o:dell:g15_5515_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5515>>-
cpe:2.3:h:dell:g15_5515:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5525_firmware>>Versions before 1.4.3(exclusive)
cpe:2.3:o:dell:g15_5525_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>g15_5525>>-
cpe:2.3:h:dell:g15_5525:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>g5_se_5505_firmware>>Versions before 1.13.0(exclusive)
cpe:2.3:o:dell:g5_se_5505_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>g5_se_5505>>-
cpe:2.3:h:dell:g5_se_5505:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_14_5410_2-in-1_firmware>>Versions before 2.15.2(exclusive)
cpe:2.3:o:dell:inspiron_14_5410_2-in-1_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_14_5410_2-in-1>>-
cpe:2.3:h:dell:inspiron_14_5410_2-in-1:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_15_3511_firmware>>Versions before 1.18.2(exclusive)
cpe:2.3:o:dell:inspiron_15_3511_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_15_3511>>-
cpe:2.3:h:dell:inspiron_15_3511:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3195_2-in-1_firmware>>Versions before 1.6.0(exclusive)
cpe:2.3:o:dell:inspiron_3195_2-in-1_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3195_2-in-1>>-
cpe:2.3:h:dell:inspiron_3195_2-in-1:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3275_firmware>>Versions before 1.9.2(exclusive)
cpe:2.3:o:dell:inspiron_3275_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3275>>-
cpe:2.3:h:dell:inspiron_3275:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3475_firmware>>Versions before 1.9.2(exclusive)
cpe:2.3:o:dell:inspiron_3475_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3475>>-
cpe:2.3:h:dell:inspiron_3475:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3505_firmware>>Versions before 1.9.0(exclusive)
cpe:2.3:o:dell:inspiron_3505_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3505>>-
cpe:2.3:h:dell:inspiron_3505:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3515_firmware>>Versions before 1.9.0(exclusive)
cpe:2.3:o:dell:inspiron_3515_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3515>>-
cpe:2.3:h:dell:inspiron_3515:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3525_firmware>>Versions before 1.5.0(exclusive)
cpe:2.3:o:dell:inspiron_3525_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3525>>-
cpe:2.3:h:dell:inspiron_3525:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3585_firmware>>Versions before 1.10.0(exclusive)
cpe:2.3:o:dell:inspiron_3585_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3585>>-
cpe:2.3:h:dell:inspiron_3585:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3595_firmware>>Versions before 1.5.0(exclusive)
cpe:2.3:o:dell:inspiron_3595_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3595>>-
cpe:2.3:h:dell:inspiron_3595:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3785_firmware>>Versions before 1.10.0(exclusive)
cpe:2.3:o:dell:inspiron_3785_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3785>>-
cpe:2.3:h:dell:inspiron_3785:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3891_firmware>>Versions before 1.12.0(exclusive)
cpe:2.3:o:dell:inspiron_3891_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_3891>>-
cpe:2.3:h:dell:inspiron_3891:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5310_firmware>>Versions before 2.15.0(exclusive)
cpe:2.3:o:dell:inspiron_5310_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5310>>-
cpe:2.3:h:dell:inspiron_5310:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5405_firmware>>Versions before 1.9.0(exclusive)
cpe:2.3:o:dell:inspiron_5405_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5405>>-
cpe:2.3:h:dell:inspiron_5405:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5410_firmware>>Versions before 2.14.0(exclusive)
cpe:2.3:o:dell:inspiron_5410_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5410>>-
cpe:2.3:h:dell:inspiron_5410:-:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5415_firmware>>Versions before 1.13.0(exclusive)
cpe:2.3:o:dell:inspiron_5415_firmware:*:*:*:*:*:*:*:*
Dell Inc.
dell
>>inspiron_5415>>-
cpe:2.3:h:dell:inspiron_5415:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-787Primarynvd@nist.gov
CWE-121Secondarysecurity_alert@emc.com
CWE ID: CWE-787
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-121
Type: Secondary
Source: security_alert@emc.com
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.dell.com/support/kbdoc/000205716security_alert@emc.com
Vendor Advisory
Hyperlink: https://www.dell.com/support/kbdoc/000205716
Source: security_alert@emc.com
Resource:
Vendor Advisory
Change History
0Changes found
Details not found