Input validation

2022-05-2616:15:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.

CPENameOperatorVersion
dell_g5_5505_firmwarelt1.10.0
inspiron_22-3275_firmwarelt1.8.0
inspiron_24-3475_firmwarelt1.8.0
inspiron_27_7775_firmwarelt2.15.0
inspiron_3180_firmwarelt1.4.4
inspiron_3185_firmwarelt1.4.4
inspiron_3195_firmwarelt1.4.1
inspiron_3505_firmwarelt1.5.0
inspiron_3515_firmwarelt1.4.0
inspiron_3585_firmwarelt1.6.0

Name	Operator	Version
dell_g5_5505_firmware	lt	1.10.0
inspiron_22-3275_firmware	lt	1.8.0
inspiron_24-3475_firmware	lt	1.8.0
inspiron_27_7775_firmware	lt	2.15.0
inspiron_3180_firmware	lt	1.4.4
inspiron_3185_firmware	lt	1.4.4
inspiron_3195_firmware	lt	1.4.1
inspiron_3505_firmware	lt	1.5.0
inspiron_3515_firmware	lt	1.4.0
inspiron_3585_firmware	lt	1.6.0