本ページは dell embedded_box_pc_3000_firmware に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2024-52541 | Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges. | [email protected] | 8.2 | 0.16% | 2025-02-19 | 2026-06-17 |
| CVE-2024-47238 | Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution. | [email protected] | 7.5 | 0.22% | 2024-12-12 | 2026-06-17 |
| CVE-2024-0158 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges | [email protected] | 5.1 | 0.15% | 2024-07-02 | 2026-06-17 |
| CVE-2024-22429 | Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution. | [email protected] | 7.5 | 0.21% | 2024-05-17 | 2026-06-17 |
| CVE-2023-28075 | Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the system. | [email protected] | 6.9 | 0.17% | 2023-08-16 | 2026-06-17 |
| CVE-2023-24571 | Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with administrator privileges could potentially exploit this vulnerability to perform arbitrary code execution. | [email protected] | 7.5 | 0.18% | 2023-03-16 | 2026-06-17 |
| CVE-2022-34398 | Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system. | [email protected] | 7.5 | 0.16% | 2023-02-01 | 2026-06-17 |
| CVE-2022-32490 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 7.5 | 0.18% | 2023-01-18 | 2026-06-17 |
| CVE-2022-32493 | Dell BIOS contains an Stack-Based Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 6.0 | 0.18% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32491 | Dell Client BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM. | [email protected] | 4.1 | 0.15% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32489 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 8.2 | 0.23% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32488 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 8.2 | 0.23% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32487 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 7.5 | 0.20% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32485 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM. | [email protected] | 7.5 | 0.20% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32484 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable. | [email protected] | 5.6 | 0.16% | 2022-10-12 | 2026-06-17 |
| CVE-2022-32483 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable. | [email protected] | 5.6 | 0.16% | 2022-10-12 | 2026-06-17 |
| CVE-2022-26861 | Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM. | [email protected] | 7.9 | 0.20% | 2022-09-06 | 2026-06-17 |
| CVE-2022-26860 | Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM. | [email protected] | 7.5 | 0.17% | 2022-09-06 | 2026-06-17 |
| CVE-2022-26859 | Dell BIOS contains a race condition vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI in order to bypass security checks during SMM. | [email protected] | 6.1 | 0.12% | 2022-09-06 | 2026-06-17 |
| CVE-2022-26858 | Dell BIOS versions contain an Improper Authentication vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls. | [email protected] | 6.1 | 0.16% | 2022-09-06 | 2026-06-17 |