VYPR

BIOS

by Dell

CVEs (117)

  • CVE-2020-5361MedJan 4, 2021
    risk 0.33cvss 5.1epss 0.00

    Select Dell Client Commercial and Consumer platforms support a BIOS password reset capability that is designed to assist authorized customers who forget their passwords. Dell is aware of unauthorized password generation tools that can generate BIOS recovery passwords. The tools,…

  • CVE-2024-28970MedJun 12, 2024
    risk 0.31cvss 4.7epss 0.00

    Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial of service.

  • CVE-2024-22448MedApr 10, 2024
    risk 0.31cvss 4.7epss 0.00

    Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.

  • CVE-2022-22567MedFeb 9, 2022
    risk 0.31cvss 4.7epss 0.00

    Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. An authenticated malicious user may exploit this vulnerability in order to install modified BIOS firmware.

  • CVE-2023-32453MedAug 16, 2023
    risk 0.30cvss 4.6epss 0.00

    Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator.

  • CVE-2022-46752MedMar 8, 2023
    risk 0.30cvss 4.6epss 0.00

    Dell BIOS contains an Improper Authorization vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

  • CVE-2022-32491MedOct 12, 2022
    risk 0.27cvss 4.1epss 0.00

    Dell Client BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.

  • CVE-2024-32855LowJun 25, 2024
    risk 0.25cvss 3.8epss 0.00

    Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.

  • CVE-2023-28064LowJun 23, 2023
    risk 0.23cvss 3.5epss 0.00

    Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

  • CVE-2022-31225LowSep 12, 2022
    risk 0.20cvss 3.0epss 0.00

    Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

  • CVE-2022-31220LowSep 12, 2022
    risk 0.20cvss 3.0epss 0.00

    Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

  • CVE-2022-31223LowSep 12, 2022
    risk 0.15cvss 2.3epss 0.00

    Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by sending unexpected null bytes in order to read memory on the system.

  • CVE-2022-31222LowSep 12, 2022
    risk 0.15cvss 2.3epss 0.00

    Dell BIOS versions contain a Missing Release of Resource after Effective Lifetime vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by consuming excess memory in order to cause the application to crash.

  • CVE-2022-31221LowSep 12, 2022
    risk 0.15cvss 2.3epss 0.00

    Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order access sensitive state information on the system.

  • CVE-2020-5387LowOct 1, 2020
    risk 0.15cvss 2.3epss 0.00

    Dell XPS 13 9370 BIOS versions prior to 1.13.1 contains an Improper Exception Handling vulnerability. A local attacker with physical access could exploit this vulnerability to prevent the system from booting until the exploited boot device is removed.

  • CVE-2022-31224LowSep 12, 2022
    risk 0.13cvss 2.0epss 0.00

    Dell BIOS versions contain an Improper Protection Against Voltage and Clock Glitches vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by triggering a fault condition in order to change the behavior of the system.

  • CVE-2013-3582Aug 28, 2013
    risk 0.00cvss epss 0.03

    Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install arbitrary BIOS images by leveraging administrative privileges and providing a crafted…

Page 6 of 6