Vulnerability in Dell Bios

CVE-2015-2890

The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile Workstation, and Precision Workstation Client Solutions (CS) devices with model-dependent firmware before A21 does not enforce a BIOS_CNTL locking protection mechanism up…

EPSS: 0.008 (50.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H.

Affected products

References

  • cret@cert.org (US Government Resource, x_refsource_CERT-VN, Third Party Advisory, third-party-advisory)
  • cret@cert.org (x_refsource_CONFIRM, US Government Resource, Third Party Advisory)

Frequently asked questions

What is CVE-2015-2890?
CVE-2015-2890 is a medium-severity vulnerability in Dell Bios. CVSS score: 6.0/10. Published 2015-08-01.
How severe is CVE-2015-2890?
Medium severity. CVSS v3 base score is 6.0 out of 10.