CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
9.0%
Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system.
Vendor | Product | Version | CPE |
---|---|---|---|
dell | inspiron_7510 | - | cpe:2.3:h:dell:inspiron_7510:-:*:*:*:*:*:*:* |
dell | inspiron_7510_firmware | * | cpe:2.3:o:dell:inspiron_7510_firmware:*:*:*:*:*:*:*:* |
dell | inspiron_7610 | - | cpe:2.3:h:dell:inspiron_7610:-:*:*:*:*:*:*:* |
dell | inspiron_7610_firmware | * | cpe:2.3:o:dell:inspiron_7610_firmware:*:*:*:*:*:*:*:* |
dell | latitude_5430_rugged | - | cpe:2.3:h:dell:latitude_5430_rugged:-:*:*:*:*:*:*:* |
dell | latitude_5430_rugged_firmware | * | cpe:2.3:o:dell:latitude_5430_rugged_firmware:*:*:*:*:*:*:*:* |
dell | latitude_5521 | - | cpe:2.3:h:dell:latitude_5521:-:*:*:*:*:*:*:* |
dell | latitude_5521_firmware | * | cpe:2.3:o:dell:latitude_5521_firmware:*:*:*:*:*:*:*:* |
dell | latitude_7330_rugged | - | cpe:2.3:h:dell:latitude_7330_rugged:-:*:*:*:*:*:*:* |
dell | latitude_7330_rugged_firmware | * | cpe:2.3:o:dell:latitude_7330_rugged_firmware:*:*:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Inspiron 7510",
"Inspiron 7610",
"Latitude 5430 Rugged Laptop",
"Latitude 5521",
"Latitude 7330 Rugged Laptop",
"Precision 3561",
"Precision 5560",
"Precision 5760",
"Precision 7560",
"Precision 7760",
"Vostro 7510",
"XPS 15 9510",
"XPS 17 9710"
],
"product": "CPG BIOS",
"vendor": "Dell",
"versions": [
{
"status": "affected",
"version": "Versions prior to 1.20.0"
},
{
"status": "affected",
"version": "Versions prior to 1.23.0"
},
{
"status": "affected",
"version": "Versions prior to 1.27.0"
},
{
"status": "affected",
"version": "Versions prior to 1.25.0"
},
{
"status": "affected",
"version": "Versions prior to 1.24.0"
}
]
}
]