Search Results | AttackerKB

15 Total Results

Displaying 1-10 of 15

Attacker Value

Unknown

CVE-2021-36323

Disclosure Date: November 01, 2021 (last updated October 07, 2023)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Attacker Value

Unknown

CVE-2022-26861

Disclosure Date: August 04, 2022 (last updated October 08, 2023)

Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-26860

Disclosure Date: August 04, 2022 (last updated October 08, 2023)

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-26859

Disclosure Date: August 04, 2022 (last updated October 08, 2023)

Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.

Attack Vector: Local Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2022-26858

Disclosure Date: August 04, 2022 (last updated October 08, 2023)

Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

Attack Vector: Local Privileges: Low User Interaction: None