CVE-2022-32486
published 2022-10-11CVE-2022-32486: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | bios | < 2.21.0 | 2.21.0 |
| dell | bios | < 2.25.0 | 2.25.0 |
| dell | cpg_bios | >= unspecified < 2.25.0 | 2.25.0 |