Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-14507
HistoryFeb 21, 2023 - 12:00 a.m.

Dell BIOS Input Validation Error Vulnerability (CNVD-2023-14507)

2023-02-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
dell bios
input validation
vulnerability
cnvd-2023-14507
smram
smi
http
https
remote attack
arbitrary code
root privileges
dell usa

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell BIOS is embedded software on a small memory chip on a computer motherboard from Dell (USA).Dell BIOS is vulnerable to an input validation error. An authenticated local malicious user can execute arbitrary code in SMRAM by using SMI. A remote attacker could exploit the vulnerability by sending a malicious HTTP or HTTPS request to execute arbitrary shell commands with root user privileges.

Related

cve 1
prion 1
cvelist 1
nvd 1
cve
cve
CVE-2022-34460
2023-01-18 06:15:11
prion
prion
Input validation
2023-01-18 06:15:00
cvelist
cvelist
CVE-2022-34460
2023-01-18 05:25:10
nvd
nvd
CVE-2022-34460
2023-01-18 06:15:11

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CNVD-2023-14507
cve1prion1cvelist1nvd1