Dell Latitude 5285 2-In-1 Firmware vulnerabilities
44 known vulnerabilities affecting dell/latitude_5285_2-in-1_firmware.
Total CVEs
44
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH11MEDIUM33
Vulnerabilities
Page 3 of 3
CVE-2022-26861HIGHCVSS 7.8fixed in 1.16.02022-09-06
CVE-2022-26861 [HIGH] CWE-1038 CVE-2022-26861: Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated m
Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.
nvd
CVE-2021-36342MEDIUMCVSS 6.4fixed in 1.15.02022-01-24
CVE-2021-36342 [HIGH] CWE-119 CVE-2021-36342: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
nvd
CVE-2021-36343MEDIUMCVSS 6.4fixed in 1.15.02022-01-24
CVE-2021-36343 [HIGH] CWE-119 CVE-2021-36343: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
nvd
CVE-2021-21522MEDIUMCVSS 4.4fixed in 1.13.02021-09-28
CVE-2021-21522 [HIGH] CWE-255 CVE-2021-21522: Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentia
Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface.
nvd
← Previous3 / 3