VYPR
Medium severity6.0NVD Advisory· Published Aug 1, 2015· Updated Jun 17, 2026

CVE-2015-2890

CVE-2015-2890

Description

The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile Workstation, and Precision Workstation Client Solutions (CS) devices with model-dependent firmware before A21 does not enforce a BIOS_CNTL locking protection mechanism upon being woken from sleep, which allows local users to conduct EFI flash attacks by leveraging console access, a similar issue to CVE-2015-3692.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.