Design/Logic Flaw

2023-03-1612:15:00

PRIOn knowledge base

www.prio-n.com

design flaw

logic flaw

dell poweredge

dell precision

bios

smm

buffer verification

local user

privileges

arbitrary code execution

denial of service

vulnerability

nvd

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service.

CPENameOperatorVersion
c4130_firmwarelt2.16.0
c4140_firmwarelt2.16.1
c6320_firmwarelt2.16.0
c6420_firmwarelt2.16.1
c6520_firmwarelt1.8.2
dss8440_firmwarelt2.16.1
fc430_firmwarelt2.16.0
fc630_firmwarelt2.16.0
fc640_firmwarelt2.16.1
fc830_firmwarelt2.16.0

Name	Operator	Version
c4130_firmware	lt	2.16.0
c4140_firmware	lt	2.16.1
c6320_firmware	lt	2.16.0
c6420_firmware	lt	2.16.1
c6520_firmware	lt	1.8.2
dss8440_firmware	lt	2.16.1
fc430_firmware	lt	2.16.0
fc630_firmware	lt	2.16.0
fc640_firmware	lt	2.16.1
fc830_firmware	lt	2.16.0