cbcvebase.
CVE-2019-3717
published 2019-08-05

CVE-2019-3717: Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system…

medium6.8CVSS 3.1
AVPACLPRNUINSUCHIHAH
Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure Boot restrictions to run unsigned and untrusted code on expansion cards installed in the system during platform boot. Refer to https://www.dell.com/support/article/us/en/04/sln317683/dsa-2019-043-dell-client-improper-access-control-vulnerability?lang=en for versions affected by this vulnerability.

Affected

240 ranges· showing 25
VendorProductVersion rangeFixed in
dellchengming_3967_firmware< 1.5.01.5.0
dellchengming_3977_firmware< 1.6.01.6.0
dellchengming_3980_firmware< 1.5.211.5.21
delldell_client_commercial_and_consumer_platforms
dellembedded_box_pc_5000_firmware< 1.5.61.5.6
dellg3_3579_firmware< 1.9.01.9.0
dellg3_3779_firmware< 1.9.01.9.0
dellg5_5587_firmware< 1.10.01.10.0
dellg5_5590_firmware< 1.3.11.3.1
dellg7_7588_firmware< 1.10.01.10.0
dellg7_7590_firmware< 1.3.11.3.1
dellg7_7790_firmware< 1.3.11.3.1
dellinspiron_3153_firmware< 1.22.01.22.0
dellinspiron_3158_firmware< 1.22.01.22.0
dellinspiron_3268_firmware< 1.11.11.11.1
dellinspiron_3458_firmware< a18a18
dellinspiron_3459_firmware< 1.9.01.9.0
dellinspiron_3467_firmware< 2.9.02.9.0
dellinspiron_3468_firmware< 1.12.01.12.0
dellinspiron_3470_firmware< 1.5.211.5.21
dellinspiron_3476_firmware< 1.7.01.7.0
dellinspiron_3480_firmware< 1.4.11.4.1
dellinspiron_3481_firmware< 1.2.01.2.0
dellinspiron_3558_firmware< a18a18
dellinspiron_3559_firmware< 1.9.01.9.0