CVE-2022-26863
published 2022-06-23CVE-2022-26863: Prior Dell BIOS versions contain an Input Validation vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Prior Dell BIOS versions contain an Input Validation vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls in SMM.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | alienware_m15_r5_firmware | < 1.5.0 | 1.5.0 |
| dell | cpg_bios | >= unspecified < 1.5.0 | 1.5.0 |
| dell | g15_5515_firmware | < 1.6.0 | 1.6.0 |
| dell | g5_se_5505_firmware | < 1.11.0 | 1.11.0 |
| dell | inspiron_14_5425_firmware | < 1.2.1 | 1.2.1 |
| dell | inspiron_27_7775_firmware | < 2.16.1 | 2.16.1 |
| dell | inspiron_3180_firmware | < 1.4.4 | 1.4.4 |
| dell | inspiron_3185_firmware | < 1.4.4 | 1.4.4 |
| dell | inspiron_3195_firmware | < 1.4.1 | 1.4.1 |
| dell | inspiron_3275_firmware | < 1.9.0 | 1.9.0 |
| dell | inspiron_3475_firmware | < 1.9.0 | 1.9.0 |
| dell | inspiron_3505_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_3515_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_3525_firmware | < 1.3.0 | 1.3.0 |
| dell | inspiron_3585_firmware | < 1.7.0 | 1.7.0 |
| dell | inspiron_3595_firmware | < 1.3.0 | 1.3.0 |
| dell | inspiron_3785_firmware | < 1.7.0 | 1.7.0 |
| dell | inspiron_5405_firmware | < 1.7.0 | 1.7.0 |
| dell | inspiron_5415_all-in-one_firmware | < 1.5.0 | 1.5.0 |
| dell | inspiron_5415_firmware | < 1.9.0 | 1.9.0 |
| dell | inspiron_5485_firmware | < 2.8.0 | 2.8.0 |
| dell | inspiron_5505_firmware | < 1.7.0 | 1.7.0 |
| dell | inspiron_5515_firmware | < 1.9.0 | 1.9.0 |
| dell | inspiron_5575_firmware | < 1.6.0 | 1.6.0 |
| dell | inspiron_5585_firmware | < 2.8.0 | 2.8.0 |