Vulnerability Details CVE-2022-34390
Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.1%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-34390
-
cpe:2.3:h:dell:alienware_area-51_r4:-
-
cpe:2.3:h:dell:alienware_area-51_r5:-
-
cpe:2.3:o:dell:alienware_area-51_r4_firmware:-
-
cpe:2.3:o:dell:alienware_area-51_r5_firmware:-