Dell Inspiron 3910 Firmware vulnerabilities

CVE-2022-31224 [LOW] CWE-1247 CVE-2022-31224: Dell BIOS versions contain an Improper Protection Against Voltage and Clock Glitches vulnerability. Dell BIOS versions contain an Improper Protection Against Voltage and Clock Glitches vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by triggering a fault condition in order to change the behavior of the system.

CVE-2022-31223 [LOW] CWE-158 CVE-2022-31223: Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authentica Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by sending unexpected null bytes in order to read memory on the system.

CVE-2022-31221 [LOW] CWE-200 CVE-2022-31221: Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrato Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order access sensitive state information on the system.

CVE-2022-26859 [MEDIUM] CWE-367 CVE-2022-26859: Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM.

CVE-2022-26858 [MEDIUM] CWE-287 CVE-2022-26858: Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicio Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls.

CVE-2022-26860 [HIGH] CWE-121 CVE-2022-26860: Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could explo Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

CVE-2022-26861 [HIGH] CWE-1038 CVE-2022-26861: Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated m Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.