cbcvebase.
CVE-2022-31223
published 2022-09-12

CVE-2022-31223: Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator user could potentially exploit this…

low2.3CVSS 3.1
AVLACLPRHUINSUCLINAN
Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by sending unexpected null bytes in order to read memory on the system.

Affected

26 ranges· showing 25
VendorProductVersion rangeFixed in
dellchengming_3900_firmware< 1.1.661.1.66
dellcpg_bios>= unspecified < 21Q4 platforms21Q4 platforms
dellinspiron_14_plus_7420_firmware< 1.2.01.2.0
dellinspiron_16_plus_7620_firmware< 1.2.01.2.0
dellinspiron_3910_firmware< 1.1.661.1.66
dellinspiron_5320_firmware< 1.1.01.1.0
dellinspiron_5420_firmware< 1.4.11.4.1
dellinspiron_5620_firmware< 1.4.11.4.1
dellinspiron_7420_firmware< 1.3.01.3.0
dellinspiron_7620_firmware< 1.3.01.3.0
delloptiplex_3000_firmware< 1.1.661.1.66
delloptiplex_3000_thin_client_firmware< 1.0.71.0.7
delloptiplex_5000_firmware< 1.3.621.3.62
delloptiplex_5400_firmware< 1.0.131.0.13
delloptiplex_7000_firmware< 1.3.621.3.62
delloptiplex_7000_oem_firmware< 1.3.621.3.62
delloptiplex_7400_firmware< 1.0.131.0.13
dellprecision_3460_small_form_factor_firmware< 1.3.621.3.62
dellprecision_3660_tower_firmware< 1.3.711.3.71
dellprecision_5770_firmware< 1.6.01.6.0
dellvostro_3710_firmware< 1.1.661.1.66
dellvostro_3910_firmware< 1.1.661.1.66
dellvostro_5320_firmware< 1.1.01.1.0
dellvostro_5620_firmware< 1.4.11.4.1
dellvostro_7620_firmware< 1.2.01.2.0