CVE-2021-36323
published 2021-11-12CVE-2021-36323: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected
291 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | alienware_13_r3_firmware | < 1.13.0 | 1.13.0 |
| dell | alienware_15_r3_firmware | < 1.13.0 | 1.13.0 |
| dell | alienware_15_r4_firmware | < 1.14.0 | 1.14.0 |
| dell | alienware_17_r4_firmware | < 1.13.0 | 1.13.0 |
| dell | alienware_17_r5_firmware | < 1.14.0 | 1.14.0 |
| dell | alienware_area_51m_r1_firmware | < 1.15.1 | 1.15.1 |
| dell | alienware_area_51m_r2_firmware | < 1.10.0 | 1.10.0 |
| dell | alienware_aurora_r11_firmware | < 1.0.9 | 1.0.9 |
| dell | alienware_aurora_r12_firmware | < 1.1.7 | 1.1.7 |
| dell | alienware_aurora_r7_firmware | < 1.0.25 | 1.0.25 |
| dell | alienware_aurora_r8_firmware | < 1.0.17 | 1.0.17 |
| dell | alienware_aurora_r9_firmware | < 1.0.14 | 1.0.14 |
| dell | alienware_aurora_ryzen_edition_firmware | < 2.2.4 | 2.2.4 |
| dell | alienware_m15_r1_firmware | < 2.9.0 | 2.9.0 |
| dell | alienware_m15_r2_firmware | < 1.9.0 | 1.9.0 |
| dell | alienware_m15_r3_firmware | < 1.11.0 | 1.11.0 |
| dell | alienware_m17_r1_firmware | < 2.9.0 | 2.9.0 |
| dell | alienware_m17_r2_firmware | < 1.9.0 | 1.9.0 |
| dell | alienware_m17_r3_firmware | < 1.11.0 | 1.11.0 |
| dell | alienware_x15_r1_firmware | < 1.4.0 | 1.4.0 |
| dell | alienware_x17_r1_firmware | < 1.4.0 | 1.4.0 |
| dell | chengming_3977_firmware | < 1.13.0 | 1.13.0 |
| dell | chengming_3980_firmware | < 2.19.0 | 2.19.0 |
| dell | chengming_3988_firmware | < 1.7.0 | 1.7.0 |
| dell | chengming_3990_firmware | < 1.5.1 | 1.5.1 |