// For flags

CVE-2022-24420

 

Severity Score

7.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.

Dell BIOS contiene una vulnerabilidad de comprobación de entrada inapropiada. Un usuario malicioso autenticado localmente puede explotar potencialmente esta vulnerabilidad al usar un SMI para conseguir una ejecución de código arbitrario durante el SMM

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-02-04 CVE Reserved
  • 2022-03-11 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-09-17 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Dell
Search vendor "Dell"
Alienware 13 R3 Firmware
Search vendor "Dell" for product "Alienware 13 R3 Firmware"
< 1.16.1
Search vendor "Dell" for product "Alienware 13 R3 Firmware" and version " < 1.16.1"
-
Affected
in Dell
Search vendor "Dell"
Alienware 13 R3
Search vendor "Dell" for product "Alienware 13 R3"
--
Safe
Dell
Search vendor "Dell"
Alienware 15 R3 Firmware
Search vendor "Dell" for product "Alienware 15 R3 Firmware"
< 1.16.1
Search vendor "Dell" for product "Alienware 15 R3 Firmware" and version " < 1.16.1"
-
Affected
in Dell
Search vendor "Dell"
Alienware 15 R3
Search vendor "Dell" for product "Alienware 15 R3"
--
Safe
Dell
Search vendor "Dell"
Alienware 15 R4 Firmware
Search vendor "Dell" for product "Alienware 15 R4 Firmware"
< 1.17.0
Search vendor "Dell" for product "Alienware 15 R4 Firmware" and version " < 1.17.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware 15 R4
Search vendor "Dell" for product "Alienware 15 R4"
--
Safe
Dell
Search vendor "Dell"
Alienware 17 R4 Firmware
Search vendor "Dell" for product "Alienware 17 R4 Firmware"
< 1.16.1
Search vendor "Dell" for product "Alienware 17 R4 Firmware" and version " < 1.16.1"
-
Affected
in Dell
Search vendor "Dell"
Alienware 17 R4
Search vendor "Dell" for product "Alienware 17 R4"
--
Safe
Dell
Search vendor "Dell"
Alienware 17 R5 Firmware
Search vendor "Dell" for product "Alienware 17 R5 Firmware"
< 1.17.0
Search vendor "Dell" for product "Alienware 17 R5 Firmware" and version " < 1.17.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware 17 R5
Search vendor "Dell" for product "Alienware 17 R5"
--
Safe
Dell
Search vendor "Dell"
Alienware Area 51m R1 Firmware
Search vendor "Dell" for product "Alienware Area 51m R1 Firmware"
< 1.18.0
Search vendor "Dell" for product "Alienware Area 51m R1 Firmware" and version " < 1.18.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware Area 51m R1
Search vendor "Dell" for product "Alienware Area 51m R1"
--
Safe
Dell
Search vendor "Dell"
Alienware Area 51m R2 Firmware
Search vendor "Dell" for product "Alienware Area 51m R2 Firmware"
< 1.13.0
Search vendor "Dell" for product "Alienware Area 51m R2 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware Area 51m R2
Search vendor "Dell" for product "Alienware Area 51m R2"
--
Safe
Dell
Search vendor "Dell"
Alienware Aurora R8 Firmware
Search vendor "Dell" for product "Alienware Aurora R8 Firmware"
< 1.0.20
Search vendor "Dell" for product "Alienware Aurora R8 Firmware" and version " < 1.0.20"
-
Affected
in Dell
Search vendor "Dell"
Alienware Aurora R8
Search vendor "Dell" for product "Alienware Aurora R8"
--
Safe
Dell
Search vendor "Dell"
Alienware M15 R2 Firmware
Search vendor "Dell" for product "Alienware M15 R2 Firmware"
< 1.12.0
Search vendor "Dell" for product "Alienware M15 R2 Firmware" and version " < 1.12.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M15 R2
Search vendor "Dell" for product "Alienware M15 R2"
--
Safe
Dell
Search vendor "Dell"
Alienware M15 R3 Firmware
Search vendor "Dell" for product "Alienware M15 R3 Firmware"
< 1.14.0
Search vendor "Dell" for product "Alienware M15 R3 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M15 R3
Search vendor "Dell" for product "Alienware M15 R3"
--
Safe
Dell
Search vendor "Dell"
Alienware M15 R4 Firmware
Search vendor "Dell" for product "Alienware M15 R4 Firmware"
< 1.8.0
Search vendor "Dell" for product "Alienware M15 R4 Firmware" and version " < 1.8.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M15 R4
Search vendor "Dell" for product "Alienware M15 R4"
--
Safe
Dell
Search vendor "Dell"
Alienware M17 R2 Firmware
Search vendor "Dell" for product "Alienware M17 R2 Firmware"
< 1.12.0
Search vendor "Dell" for product "Alienware M17 R2 Firmware" and version " < 1.12.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M17 R2
Search vendor "Dell" for product "Alienware M17 R2"
--
Safe
Dell
Search vendor "Dell"
Alienware M17 R3 Firmware
Search vendor "Dell" for product "Alienware M17 R3 Firmware"
< 1.14.0
Search vendor "Dell" for product "Alienware M17 R3 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M17 R3
Search vendor "Dell" for product "Alienware M17 R3"
--
Safe
Dell
Search vendor "Dell"
Alienware M17 R4 Firmware
Search vendor "Dell" for product "Alienware M17 R4 Firmware"
< 1.8.0
Search vendor "Dell" for product "Alienware M17 R4 Firmware" and version " < 1.8.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware M17 R4
Search vendor "Dell" for product "Alienware M17 R4"
--
Safe
Dell
Search vendor "Dell"
Alienware X15 R1 Firmware
Search vendor "Dell" for product "Alienware X15 R1 Firmware"
< 1.7.0
Search vendor "Dell" for product "Alienware X15 R1 Firmware" and version " < 1.7.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware X15 R1
Search vendor "Dell" for product "Alienware X15 R1"
--
Safe
Dell
Search vendor "Dell"
Alienware X17 R1 Firmware
Search vendor "Dell" for product "Alienware X17 R1 Firmware"
< 1.7.0
Search vendor "Dell" for product "Alienware X17 R1 Firmware" and version " < 1.7.0"
-
Affected
in Dell
Search vendor "Dell"
Alienware X17 R1
Search vendor "Dell" for product "Alienware X17 R1"
--
Safe
Dell
Search vendor "Dell"
Edge Gateway 3000 Firmware
Search vendor "Dell" for product "Edge Gateway 3000 Firmware"
< 1.7.0
Search vendor "Dell" for product "Edge Gateway 3000 Firmware" and version " < 1.7.0"
-
Affected
in Dell
Search vendor "Dell"
Edge Gateway 3000
Search vendor "Dell" for product "Edge Gateway 3000"
--
Safe
Dell
Search vendor "Dell"
Edge Gateway 5000 Firmware
Search vendor "Dell" for product "Edge Gateway 5000 Firmware"
< 1.17.0
Search vendor "Dell" for product "Edge Gateway 5000 Firmware" and version " < 1.17.0"
-
Affected
in Dell
Search vendor "Dell"
Edge Gateway 5000
Search vendor "Dell" for product "Edge Gateway 5000"
--
Safe
Dell
Search vendor "Dell"
Edge Gateway 5100 Firmware
Search vendor "Dell" for product "Edge Gateway 5100 Firmware"
< 1.17.0
Search vendor "Dell" for product "Edge Gateway 5100 Firmware" and version " < 1.17.0"
-
Affected
in Dell
Search vendor "Dell"
Edge Gateway 5100
Search vendor "Dell" for product "Edge Gateway 5100"
--
Safe
Dell
Search vendor "Dell"
Embedded Box Pc 3000 Firmware
Search vendor "Dell" for product "Embedded Box Pc 3000 Firmware"
< 1.13.0
Search vendor "Dell" for product "Embedded Box Pc 3000 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Embedded Box Pc 3000
Search vendor "Dell" for product "Embedded Box Pc 3000"
--
Safe
Dell
Search vendor "Dell"
Embedded Box Pc 5000 Firmware
Search vendor "Dell" for product "Embedded Box Pc 5000 Firmware"
< 1.14.0
Search vendor "Dell" for product "Embedded Box Pc 5000 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Embedded Box Pc 5000
Search vendor "Dell" for product "Embedded Box Pc 5000"
--
Safe
Dell
Search vendor "Dell"
Inspiron 14 3473 Firmware
Search vendor "Dell" for product "Inspiron 14 3473 Firmware"
< 1.14.0
Search vendor "Dell" for product "Inspiron 14 3473 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 14 3473
Search vendor "Dell" for product "Inspiron 14 3473"
--
Safe
Dell
Search vendor "Dell"
Inspiron 15 3573 Firmware
Search vendor "Dell" for product "Inspiron 15 3573 Firmware"
< 1.14.0
Search vendor "Dell" for product "Inspiron 15 3573 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 15 3573
Search vendor "Dell" for product "Inspiron 15 3573"
--
Safe
Dell
Search vendor "Dell"
Inspiron 15 5566 Firmware
Search vendor "Dell" for product "Inspiron 15 5566 Firmware"
< 1.18.0
Search vendor "Dell" for product "Inspiron 15 5566 Firmware" and version " < 1.18.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 15 5566
Search vendor "Dell" for product "Inspiron 15 5566"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3277 Firmware
Search vendor "Dell" for product "Inspiron 3277 Firmware"
< 1.19.0
Search vendor "Dell" for product "Inspiron 3277 Firmware" and version " < 1.19.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3277
Search vendor "Dell" for product "Inspiron 3277"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3465 Firmware
Search vendor "Dell" for product "Inspiron 3465 Firmware"
< 1.12.0
Search vendor "Dell" for product "Inspiron 3465 Firmware" and version " < 1.12.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3465
Search vendor "Dell" for product "Inspiron 3465"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3477 Firmware
Search vendor "Dell" for product "Inspiron 3477 Firmware"
< 1.19.0
Search vendor "Dell" for product "Inspiron 3477 Firmware" and version " < 1.19.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3477
Search vendor "Dell" for product "Inspiron 3477"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3482 Firmware
Search vendor "Dell" for product "Inspiron 3482 Firmware"
< 1.13.0
Search vendor "Dell" for product "Inspiron 3482 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3482
Search vendor "Dell" for product "Inspiron 3482"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3502 Firmware
Search vendor "Dell" for product "Inspiron 3502 Firmware"
< 1.7.0
Search vendor "Dell" for product "Inspiron 3502 Firmware" and version " < 1.7.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3502
Search vendor "Dell" for product "Inspiron 3502"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3510 Firmware
Search vendor "Dell" for product "Inspiron 3510 Firmware"
< 1.6.0
Search vendor "Dell" for product "Inspiron 3510 Firmware" and version " < 1.6.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3510
Search vendor "Dell" for product "Inspiron 3510"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3565 Firmware
Search vendor "Dell" for product "Inspiron 3565 Firmware"
< 1.12.0
Search vendor "Dell" for product "Inspiron 3565 Firmware" and version " < 1.12.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3565
Search vendor "Dell" for product "Inspiron 3565"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3582 Firmware
Search vendor "Dell" for product "Inspiron 3582 Firmware"
< 1.13.0
Search vendor "Dell" for product "Inspiron 3582 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3582
Search vendor "Dell" for product "Inspiron 3582"
--
Safe
Dell
Search vendor "Dell"
Inspiron 3782 Firmware
Search vendor "Dell" for product "Inspiron 3782 Firmware"
< 1.13.0
Search vendor "Dell" for product "Inspiron 3782 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 3782
Search vendor "Dell" for product "Inspiron 3782"
--
Safe
Dell
Search vendor "Dell"
Latitude 3379 Firmware
Search vendor "Dell" for product "Latitude 3379 Firmware"
< 1.0.34
Search vendor "Dell" for product "Latitude 3379 Firmware" and version " < 1.0.34"
-
Affected
in Dell
Search vendor "Dell"
Latitude 3379
Search vendor "Dell" for product "Latitude 3379"
--
Safe
Dell
Search vendor "Dell"
Vostro 14 5468 Firmware
Search vendor "Dell" for product "Vostro 14 5468 Firmware"
< 1.19.0
Search vendor "Dell" for product "Vostro 14 5468 Firmware" and version " < 1.19.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 14 5468
Search vendor "Dell" for product "Vostro 14 5468"
--
Safe
Dell
Search vendor "Dell"
Vostro 15 5568 Firmware
Search vendor "Dell" for product "Vostro 15 5568 Firmware"
< 1.19.0
Search vendor "Dell" for product "Vostro 15 5568 Firmware" and version " < 1.19.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 15 5568
Search vendor "Dell" for product "Vostro 15 5568"
--
Safe
Dell
Search vendor "Dell"
Vostro 3267 Firmware
Search vendor "Dell" for product "Vostro 3267 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3267 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3267
Search vendor "Dell" for product "Vostro 3267"
--
Safe
Dell
Search vendor "Dell"
Vostro 3268 Firmware
Search vendor "Dell" for product "Vostro 3268 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3268 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3268
Search vendor "Dell" for product "Vostro 3268"
--
Safe
Dell
Search vendor "Dell"
Vostro 3572 Firmware
Search vendor "Dell" for product "Vostro 3572 Firmware"
< 1.14.0
Search vendor "Dell" for product "Vostro 3572 Firmware" and version " < 1.14.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3572
Search vendor "Dell" for product "Vostro 3572"
--
Safe
Dell
Search vendor "Dell"
Vostro 3582 Firmware
Search vendor "Dell" for product "Vostro 3582 Firmware"
< 1.13.0
Search vendor "Dell" for product "Vostro 3582 Firmware" and version " < 1.13.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3582
Search vendor "Dell" for product "Vostro 3582"
--
Safe
Dell
Search vendor "Dell"
Vostro 3660 Firmware
Search vendor "Dell" for product "Vostro 3660 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3660 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3660
Search vendor "Dell" for product "Vostro 3660"
--
Safe
Dell
Search vendor "Dell"
Vostro 3667 Firmware
Search vendor "Dell" for product "Vostro 3667 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3667 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3667
Search vendor "Dell" for product "Vostro 3667"
--
Safe
Dell
Search vendor "Dell"
Vostro 3668 Firmware
Search vendor "Dell" for product "Vostro 3668 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3668 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3668
Search vendor "Dell" for product "Vostro 3668"
--
Safe
Dell
Search vendor "Dell"
Vostro 3669 Firmware
Search vendor "Dell" for product "Vostro 3669 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 3669 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 3669
Search vendor "Dell" for product "Vostro 3669"
--
Safe
Dell
Search vendor "Dell"
Wyse 7040 Thin Client Firmware
Search vendor "Dell" for product "Wyse 7040 Thin Client Firmware"
< 1.15.0
Search vendor "Dell" for product "Wyse 7040 Thin Client Firmware" and version " < 1.15.0"
-
Affected
in Dell
Search vendor "Dell"
Wyse 7040 Thin Client
Search vendor "Dell" for product "Wyse 7040 Thin Client"
--
Safe
Dell
Search vendor "Dell"
Xps 8930 Firmware
Search vendor "Dell" for product "Xps 8930 Firmware"
< 1.1.21
Search vendor "Dell" for product "Xps 8930 Firmware" and version " < 1.1.21"
-
Affected
in Dell
Search vendor "Dell"
Xps 8930
Search vendor "Dell" for product "Xps 8930"
--
Safe