Vulnerability Details CVE-2022-34401
Dell BIOS contains a stack based buffer overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter in order to gain arbitrary code execution in SMRAM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.3%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2022-34401
-
cpe:2.3:h:dell:alienware_m15_a6:-
-
cpe:2.3:h:dell:alienware_m17_r5:-
-
cpe:2.3:h:dell:g15_5525:-
-
cpe:2.3:o:dell:alienware_m15_a6_firmware:-
-
cpe:2.3:o:dell:alienware_m17_r5_firmware:*
-
cpe:2.3:o:dell:g15_5525_firmware:-