CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2890

The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile Workstation, and Precision Workstation Client Solutions (CS) devices with model-dependent firmware before A21 does not enforce a BIOS_CNTL locking protection mechanism upon being woken from sleep, which allows local users to conduct EFI flash attacks by leveraging console access, a similar issue to CVE-2015-3692.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.6%

CVSS Severity

CVSS v3 Score 6.0

CVSS v2 Score 7.2

References

Products affected by CVE-2015-2890

Dell » Latitude E4310 » Version: N/A

cpe:2.3:h:dell:latitude_e4310:-
Dell » Latitude E5410 » Version: N/A

cpe:2.3:h:dell:latitude_e5410:-
Dell » Latitude E5420 » Version: N/A

cpe:2.3:h:dell:latitude_e5420:-
Dell » Latitude E5510 » Version: N/A

cpe:2.3:h:dell:latitude_e5510:-
Dell » Latitude E5520 » Version: N/A

cpe:2.3:h:dell:latitude_e5520:-
Dell » Latitude E6220 » Version: N/A

cpe:2.3:h:dell:latitude_e6220:-
Dell » Latitude E6320 » Version: N/A

cpe:2.3:h:dell:latitude_e6320:-
Dell » Latitude E6410 Atg » Version: N/A

cpe:2.3:h:dell:latitude_e6410_atg:-
Dell » Latitude E6420 Atg » Version: N/A

cpe:2.3:h:dell:latitude_e6420_atg:-
Dell » Latitude E6420 Xfr » Version: N/A

cpe:2.3:h:dell:latitude_e6420_xfr:-
Dell » Latitude E6510 » Version: N/A

cpe:2.3:h:dell:latitude_e6510:-
Dell » Latitude E6520 » Version: N/A

cpe:2.3:h:dell:latitude_e6520:-
Dell » Latitude Xt3 » Version: N/A

cpe:2.3:h:dell:latitude_xt3:-
Dell » Optiplex 390 » Version: N/A

cpe:2.3:h:dell:optiplex_390:-
Dell » Optiplex 790 » Version: N/A

cpe:2.3:h:dell:optiplex_790:-
Dell » Optiplex 990 » Version: N/A

cpe:2.3:h:dell:optiplex_990:-
Dell » Precision Mobile M4500 » Version: N/A

cpe:2.3:h:dell:precision_mobile_m4500:-
Dell » Precision Mobile M4600 » Version: N/A

cpe:2.3:h:dell:precision_mobile_m4600:-
Dell » Precision Mobile M6600 » Version: N/A

cpe:2.3:h:dell:precision_mobile_m6600:-
Dell » Precision T1600 » Version: N/A

cpe:2.3:h:dell:precision_t1600:-
Dell » Precision T3600 » Version: N/A

cpe:2.3:h:dell:precision_t3600:-
Dell » Precision T5600 » Version: N/A

cpe:2.3:h:dell:precision_t5600:-
Dell » Precision T5600 Xl » Version: N/A

cpe:2.3:h:dell:precision_t5600_xl:-
Dell » Bios » Version: N/A

cpe:2.3:o:dell:bios:-
Dell » Bios » Version: 2.21.0

cpe:2.3:o:dell:bios:2.21.0
Dell » Bios » Version: 2.25.0

cpe:2.3:o:dell:bios:2.25.0
Dell » Bios » Version: a10

cpe:2.3:o:dell:bios:a10
Dell » Bios » Version: a11

cpe:2.3:o:dell:bios:a11
Dell » Bios » Version: a12

cpe:2.3:o:dell:bios:a12
Dell » Bios » Version: a13

cpe:2.3:o:dell:bios:a13
Dell » Bios » Version: a14

cpe:2.3:o:dell:bios:a14
Dell » Bios » Version: a15

cpe:2.3:o:dell:bios:a15
Dell » Bios » Version: a17

cpe:2.3:o:dell:bios:a17
Dell » Bios » Version: a18

cpe:2.3:o:dell:bios:a18
Dell » Bios » Version: a20

cpe:2.3:o:dell:bios:a20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2890

Products

Pricing

Contact Us