CVE-2021-36343
published 2022-01-24CVE-2021-36343: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
medium6.4CVSS 3.1
AVLACHPRHUINSUCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected
415 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | alienware_13_r3_firmware | < 1.14.0 | 1.14.0 |
| dell | alienware_15_r3_firmware | < 1.14.0 | 1.14.0 |
| dell | alienware_15_r4_firmware | < 1.15.0 | 1.15.0 |
| dell | alienware_17_r4_firmware | < 1.14.0 | 1.14.0 |
| dell | alienware_17_r5_firmware | < 1.15.0 | 1.15.0 |
| dell | alienware_area_51m_r1_firmware | < 1.16.0 | 1.16.0 |
| dell | alienware_area_51m_r2_firmware | < 1.11.0 | 1.11.0 |
| dell | alienware_aurora_r11_firmware | < 1.0.10 | 1.0.10 |
| dell | alienware_aurora_r12_firmware | < 1.1.8 | 1.1.8 |
| dell | alienware_aurora_r8_firmware | < 1.0.18 | 1.0.18 |
| dell | alienware_aurora_r9_firmware | < 1.0.15 | 1.0.15 |
| dell | alienware_m15_r1_firmware | < 2.10.0 | 2.10.0 |
| dell | alienware_m15_r2_firmware | < 1.10.0 | 1.10.0 |
| dell | alienware_m15_r3_firmware | < 1.12.0 | 1.12.0 |
| dell | alienware_m15_r4_firmware | < 1.6.2 | 1.6.2 |
| dell | alienware_m17_r1_firmware | < 2.10.0 | 2.10.0 |
| dell | alienware_m17_r2_firmware | < 1.10.0 | 1.10.0 |
| dell | alienware_m17_r3_firmware | < 1.12.0 | 1.12.0 |
| dell | alienware_m17_r4_firmware | < 1.6.2 | 1.6.2 |
| dell | alienware_x15_r1_firmware | < 1.5.0 | 1.5.0 |
| dell | alienware_x17_r1_firmware | < 1.5.0 | 1.5.0 |
| dell | chengming_3977_firmware | < 1.14.0 | 1.14.0 |
| dell | chengming_3980_firmware | < 2.20.0 | 2.20.0 |
| dell | chengming_3988_firmware | < 1.8.0 | 1.8.0 |
| dell | chengming_3990_firmware | < 1.6.0 | 1.6.0 |