CVE-2022-24417
published 2022-05-26CVE-2022-24417: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution during SMM.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | cpg_bios | >= unspecified < 1.10.0 | 1.10.0 |
| dell | dell_g5_5505_firmware | < 1.10.0 | 1.10.0 |
| dell | inspiron_22-3275_firmware | < 1.8.0 | 1.8.0 |
| dell | inspiron_24-3475_firmware | < 1.8.0 | 1.8.0 |
| dell | inspiron_27_7775_firmware | < 2.15.0 | 2.15.0 |
| dell | inspiron_3180_firmware | < 1.4.4 | 1.4.4 |
| dell | inspiron_3185_firmware | < 1.4.4 | 1.4.4 |
| dell | inspiron_3195_firmware | < 1.4.1 | 1.4.1 |
| dell | inspiron_3505_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_3515_firmware | < 1.4.0 | 1.4.0 |
| dell | inspiron_3585_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_3595_firmware | < 1.2.1 | 1.2.1 |
| dell | inspiron_3785_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_5405_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_5415_firmware | < 1.7.1 | 1.7.1 |
| dell | inspiron_5485_firmware | < 2.7.0 | 2.7.0 |
| dell | inspiron_5505_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_5515_firmware | < 1.7.1 | 1.7.1 |
| dell | inspiron_5575_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_5585_firmware | < 2.7.0 | 2.7.0 |
| dell | inspiron_5675_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_5775_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_7375_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_7405_firmware | < 1.7.0 | 1.7.0 |
| dell | inspiron_7415_firmware | < 1.7.1 | 1.7.1 |