Dell Xps 8940 Firmware vulnerabilities

49 known vulnerabilities affecting dell/xps_8940_firmware.

Total CVEs
49
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH14MEDIUM35

Vulnerabilities

Page 1 of 3
CVE-2024-52541HIGHCVSS 8.2fixed in 2.24.12025-02-19
CVE-2024-52541 [HIGH] CWE-1390 CVE-2024-52541: Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker w Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
nvd
CVE-2023-43078HIGHCVSS 7.3fixed in 2.16.02024-08-28
CVE-2023-43078 [MEDIUM] CWE-59 CVE-2023-43078: Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.
nvd
CVE-2024-0158MEDIUMCVSS 6.7fixed in 2.18.12024-07-02
CVE-2024-0158 [MEDIUM] CWE-20 CVE-2024-0158: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges
nvd
CVE-2023-25938MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-25938 [MEDIUM] CWE-20 CVE-2023-25938: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28039MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28039 [MEDIUM] CWE-20 CVE-2023-28039: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28050MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28050 [MEDIUM] CWE-20 CVE-2023-28050: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28042MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28042 [MEDIUM] CWE-20 CVE-2023-28042: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28061MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28061 [MEDIUM] CWE-20 CVE-2023-28061: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28028MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28028 [MEDIUM] CWE-20 CVE-2023-28028: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28030MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28030 [MEDIUM] CWE-20 CVE-2023-28030: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28027MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28027 [MEDIUM] CWE-20 CVE-2023-28027: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-25936MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-25936 [MEDIUM] CWE-20 CVE-2023-25936: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28054MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28054 [MEDIUM] CWE-20 CVE-2023-28054: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28041MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28041 [MEDIUM] CWE-20 CVE-2023-28041: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28036MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28036 [MEDIUM] CWE-20 CVE-2023-28036: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28060MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28060 [MEDIUM] CWE-20 CVE-2023-28060: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28032MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28032 [MEDIUM] CWE-20 CVE-2023-28032: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28052MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28052 [MEDIUM] CWE-20 CVE-2023-28052: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28059MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28059 [MEDIUM] CWE-20 CVE-2023-28059: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
CVE-2023-28058MEDIUMCVSS 6.7fixed in 2.12.02023-06-23
CVE-2023-28058 [MEDIUM] CWE-20 CVE-2023-28058: Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
nvd
1 / 3Next →
Dell Xps 8940 Firmware vulnerabilities | cvebase