Dell Chengming_3990_firmware
61 CVEs affecting Dell Chengming_3990_firmware. Latest disclosed: 2025-02-19. Critical: 0, High: 18.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-52541 | High | 8.2 | 2025-02-19 | Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerabili… |
CVE-2022-32489 | High | 8.2 | 2022-10-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2022-32488 | High | 8.2 | 2022-10-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2022-26861 | High | 7.9 | 2022-09-06 | Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending m… |
CVE-2022-34398 | High | 7.5 | 2023-02-01 | Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using… |
CVE-2022-32487 | High | 7.5 | 2022-10-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2022-32485 | High | 7.5 | 2022-10-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2022-26860 | High | 7.5 | 2022-09-06 | Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to… |
CVE-2021-36343 | High | 7.5 | 2022-01-24 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-36342 | High | 7.5 | 2022-01-24 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-36325 | High | 7.5 | 2021-11-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-36324 | High | 7.5 | 2021-11-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-36323 | High | 7.5 | 2021-11-12 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-36283 | High | 7.5 | 2021-09-28 | Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI… |
CVE-2021-21574 | High | 7.2 | 2021-06-24 | Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploi… |
CVE-2021-21573 | High | 7.2 | 2021-06-24 | Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploi… |
CVE-2021-21572 | High | 7.2 | 2021-06-24 | Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploi… |
CVE-2020-5362 | High | 7.1 | 2020-06-10 | Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized act… |
CVE-2023-28075 | Medium | 6.9 | 2023-08-16 | Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially… |
CVE-2022-22566 | Medium | 6.9 | 2022-02-09 | Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical acces… |