CVE-2021-36283
published 2021-09-28CVE-2021-36283: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected
86 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | chengming_3990_firmware | < 1.3.1 | 1.3.1 |
| dell | chengming_3991_firmware | < 1.3.1 | 1.3.1 |
| dell | cpg_bios | >= unspecified < 1.3.1 | 1.3.1 |
| dell | g3_15_3500_firmware | < 1.7.1 | 1.7.1 |
| dell | g3_15_3590_firmware | < 1.12.0 | 1.12.0 |
| dell | g3_15_5500_firmware | < 1.7.1 | 1.7.1 |
| dell | inspiron_3493_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_3501_firmware | < 1.1.0 | 1.1.0 |
| dell | inspiron_3593_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_3793_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_3880_firmware | < 1.3.1 | 1.3.1 |
| dell | inspiron_3881_firmware | < 1.3.1 | 1.3.1 |
| dell | inspiron_5400_2-in-1_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_5490_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_5493_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_5498_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_5590_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_5593_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_5598_firmware | < 1.12.0 | 1.12.0 |
| dell | inspiron_7391_2-in-1_firmware | < 1.9.1 | 1.9.1 |
| dell | inspiron_7500_2-in-1_silver_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_7500_firmware | < 1.5.1 | 1.5.1 |
| dell | inspiron_7501_firmware | < 1.5.1 | 1.5.1 |
| dell | inspiron_7590_firmware | < 1.8.0 | 1.8.0 |
| dell | inspiron_7591_firmware | < 1.8.0 | 1.8.0 |