CVE-2022-32489
published 2022-10-12CVE-2022-32489: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Affected
291 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | alienware_area_51m_r1_firmware | < 1.21.0 | 1.21.0 |
| dell | alienware_area_51m_r2_firmware | < 1.18.0 | 1.18.0 |
| dell | alienware_aurora_r10_firmware | < 2.3.1 | 2.3.1 |
| dell | alienware_aurora_r11_firmware | < 1.0.16 | 1.0.16 |
| dell | alienware_aurora_r12_firmware | < 1.1.16 | 1.1.16 |
| dell | alienware_aurora_r13_firmware | < 1.5.0 | 1.5.0 |
| dell | alienware_aurora_r8_firmware | < 1.0.23 | 1.0.23 |
| dell | alienware_aurora_r9_firmware | < 1.0.20 | 1.0.20 |
| dell | alienware_m15_r1_firmware | < 2.14.0 | 2.14.0 |
| dell | alienware_m15_r2_firmware | < 1.17.0 | 1.17.0 |
| dell | alienware_m15_r3_firmware | < 1.19.0 | 1.19.0 |
| dell | alienware_m15_r4_firmware | < 1.13.0 | 1.13.0 |
| dell | alienware_m17_r1_firmware | < 2.14.0 | 2.14.0 |
| dell | alienware_m17_r2_firmware | < 1.17.0 | 1.17.0 |
| dell | alienware_m17_r3_firmware | < 1.19.0 | 1.19.0 |
| dell | alienware_m17_r4_firmware | < 1.13.0 | 1.13.0 |
| dell | alienware_x14_firmware | < 1.5.0 | 1.5.0 |
| dell | alienware_x15_r1_firmware | < 1.11.0 | 1.11.0 |
| dell | alienware_x15_r2_firmware | < 1.7.0 | 1.7.0 |
| dell | alienware_x17_r1_firmware | < 1.11.0 | 1.11.0 |
| dell | alienware_x17_r2_firmware | < 1.7.0 | 1.7.0 |
| dell | chengming_3980_firmware | < 2.24.0 | 2.24.0 |
| dell | chengming_3988_firmware | < 1.11.0 | 1.11.0 |
| dell | chengming_3990_firmware | < 1.14.0 | 1.14.0 |
| dell | chengming_3991_firmware | < 1.14.0 | 1.14.0 |