Action not permitted
Modal body text goes here.
Modal Title
Modal Body
wid-sec-w-2024-0925
Vulnerability from csaf_certbund
Published
2024-04-17 22:00
Modified
2024-04-17 22:00
Summary
Dell BIOS: Schwachstelle ermöglicht Privilegieneskalation und DoS
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Das BIOS ist die Firmware bei IBM PC kompatiblen Computern.
Angriff
Ein lokaler Angreifer kann eine Schwachstelle in Dell BIOS ausnutzen, um seine Privilegien zu erhöhen oder einen Denial-of-Service-Zustand zu verursachen.
Betroffene Betriebssysteme
- BIOS/Firmware
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Das BIOS ist die Firmware bei IBM PC kompatiblen Computern.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein lokaler Angreifer kann eine Schwachstelle in Dell BIOS ausnutzen, um seine Privilegien zu erhöhen oder einen Denial-of-Service-Zustand zu verursachen.", title: "Angriff", }, { category: "general", text: "- BIOS/Firmware", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0925 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0925.json", }, { category: "self", summary: "WID-SEC-2024-0925 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0925", }, { category: "external", summary: "Dell Security Advisory vom 2024-04-17", url: "https://www.dell.com/support/kbdoc/000217981/", }, ], source_lang: "en-US", title: "Dell BIOS: Schwachstelle ermöglicht Privilegieneskalation und DoS", tracking: { current_release_date: "2024-04-17T22:00:00.000+00:00", generator: { date: "2024-08-15T18:07:58.618+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0925", initial_release_date: "2024-04-17T22:00:00.000+00:00", revision_history: [ { date: "2024-04-17T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Dell BIOS", product: { name: "Dell BIOS", product_id: "T034299", product_identification_helper: { cpe: "cpe:/h:dell:bios:-", }, }, }, ], category: "vendor", name: "Dell", }, ], }, vulnerabilities: [ { cve: "CVE-2023-43078", notes: [ { category: "description", text: "Es besteht eine Schwachstelle im Dell BIOS. Diese Fehler existiert aufgrund eines \"Improper Link Resolution\"-Problems während der Installation, wodurch beliebige Ordner gelöscht werden können. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erweitern oder einen Denial-of-Service-Zustand zu verursachen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.", }, ], product_status: { known_affected: [ "T034299", ], }, release_date: "2024-04-17T22:00:00.000+00:00", title: "CVE-2023-43078", }, ], }
cve-2023-43078
Vulnerability from cvelistv5
Published
2024-08-28 05:33
Modified
2024-08-28 22:31
Severity ?
Summary
Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.
References
Impacted products
Vendor | Product | Version | ||
---|---|---|---|---|
Dell | Dell Client Platform, Dell Dock Firmware |
Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ Version: N/A ≤ |
{ containers: { adp: [ { affected: [ { cpes: [ "cpe:2.3:o:dell:wyse_5070_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3480_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3580_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3583_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3540_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3561_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3640_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7550_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7560_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7750_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7760_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7780_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7480_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5480_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_9420_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5521_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3320_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3580_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3480_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:alienware_m15_r6_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "alienware_m15_r6_firmware", vendor: "dell", versions: [ { lessThan: "1.27.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_17_9720_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:xps_13_9300_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:wyse_5470_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_14_3420_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_15_3520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5570_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5080_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7070_ultra_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3120_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3310_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5310_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5310_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_3520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g16_7620_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g15_5510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g15_5520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:alienware_m15_r7_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "alienware_m15_r7_firmware", vendor: "dell", versions: [ { lessThan: "1.22.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:alienware_m18_r1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:alienware_m16_r1_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "alienware_m16_r1_firmware", vendor: "dell", versions: [ { lessThan: "1.14.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_16_5630_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3020_small_desktop_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3020_tower_desktop_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3480_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_all-in-one_7410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_micro_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_micro_plus_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_small_form_factor_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_small_form_factor_plus_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_tower_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_tower_plus_7010_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5440_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7340_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7440_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7640_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3020_desktop_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3020_small_desktop_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_5630_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_7630_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_5430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_7430_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3911_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3910_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:alienware_x16_r1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:alienware_x14_r2_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "alienware_x14_r2_firmware", vendor: "dell", versions: [ { lessThan: "1.11.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_13_9305_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3710_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3910_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_5620_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3470_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5470_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_xe4_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7000_micro_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7000_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7000_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7000_xe_micro_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5000_micro_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5000_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5000_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3000_micro_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3000_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3000_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3330_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5330_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5431_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3910_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_5620_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_5420_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3900_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "chengming_3900_firmware", vendor: "dell", versions: [ { lessThan: "1.19.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_15_9520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_15_7510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3471_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3671_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_7620_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3571_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5570_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5531_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7330_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_9430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3671_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3471_firmware:*:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_plus_7620_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_7610_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_7510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_plus_7420_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3988_firmware:*:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "chengming_3988_firmware", vendor: "dell", versions: [ { lessThan: "1.20.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_17_9710_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_5090_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3550_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5760_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3070_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5070_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7070_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7071_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_9510_2in1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7700_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7490_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5401_aio_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5401_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3990_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:chengming_3991_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "chengming_3991_firmware", vendor: "dell", versions: [ { lessThan: "1.24.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_15_9500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_7500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3590_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_15_3510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5550_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3280_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5270_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7470_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7770_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7310_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7210_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7200_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5421_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7501_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_3511_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g15_5511_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "g15_5511_firmware", vendor: "dell", versions: [ { lessThan: "1.26.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_7230_rugged_extreme_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3140_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_plus_7630_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_plus_7430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g16_7630_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g15_5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "g15_5530_firmware", vendor: "dell", versions: [ { lessThan: "1.12.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_17_9700_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3401_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3501_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_5402_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_5502_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3541_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5750_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_xe3_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7060_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5060_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3060_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5401_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5501_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7300_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7320_detachable_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3501_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5402_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5406_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5409_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5502_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5509_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7306_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7506_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7706_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3430_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g5_5500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g3_3500_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "g3_3500_firmware", vendor: "dell", versions: [ { lessThan: "1.28.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_9330_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_16_7620_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_7420_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g5_5000_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "g5_5000_firmware", vendor: "dell", versions: [ { lessThan: "1.17.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_13_7390_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:wyse_5470_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_5880_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3240_compact_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3440_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7080_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7330_rugged_laptop_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5430_rugged_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3310_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3431_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:g5_5090_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "g5_5090_firmware", vendor: "dell", versions: [ { lessThan: "1.23.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7760_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7460_all_in_one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5260_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5491_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5591_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:dell_g7_7500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:dell_g7_7700_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "dell_g7_7700_firmware", vendor: "dell", versions: [ { lessThan: "1.30.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_13_5310_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_13_5310_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3630_tower_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "precision_3630_tower_firmware", vendor: "dell", versions: [ { lessThan: "2.25.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_5320_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_13_5320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_13_5320_firmware", vendor: "dell", versions: [ { lessThan: "1.16.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:inspiron_13_5330_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_13_5330_firmware", vendor: "dell", versions: [ { lessThan: "1.12.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_15_5510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_14_5410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_5510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_5518_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_5418_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_14_5410_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_14_5410_firmware", vendor: "dell", versions: [ { lessThan: "2.24.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_14_3430_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_15_3530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5480_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_9440_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_27_7720_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_24_5420_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_15_3530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_15_3530_firmware", vendor: "dell", versions: [ { lessThan: "1.8.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:inspiron_27_7710_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_24_5410_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_24_5411_all-in-one_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_24_5411_all-in-one_firmware", vendor: "dell", versions: [ { lessThan: "1.18.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_13_7390_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7740_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7540_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7424_rugged_extreme_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5420_rugged_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5424_rugged_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5300_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5300_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3301_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5593_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3793_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3593_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_3593_firmware", vendor: "dell", versions: [ { lessThan: "1.29.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:inspiron_3881_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3880_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_3880_firmware", vendor: "dell", versions: [ { lessThan: "1.24.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_5890_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3890_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:vostro_3690_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3450_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_3891_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_3891_firmware", vendor: "dell", versions: [ { lessThan: "1.22.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:vostro_5301_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7730_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_7530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5290_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3500_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3190_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3190_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7400_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_7300_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:inspiron_5301_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "inspiron_5301_firmware", vendor: "dell", versions: [ { lessThan: "1.31.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_15_7590_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:xps_15_9510_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5560_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5540_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3551_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_7090_ultra_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3090_ultra_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_9410_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7400_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5511_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5411_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3300_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_3300_firmware", vendor: "dell", versions: [ { lessThan: "1.25.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_15_9530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_5680_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3540_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3440_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3340_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_3340_firmware", vendor: "dell", versions: [ { lessThan: "1.10.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_5530_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_3420_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_3420_firmware", vendor: "dell", versions: [ { lessThan: "1.34.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_5590_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5490_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5290_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_5290_firmware", vendor: "dell", versions: [ { lessThan: "1.32.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3560_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_5320_firmware", vendor: "dell", versions: [ { lessThan: "1.36.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3580_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3581_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5540_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5340_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_5340_firmware", vendor: "dell", versions: [ { lessThan: "1.10.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_5420_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_5420_firmware", vendor: "dell", versions: [ { lessThan: "1.36.2", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3570_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_5530_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_5530_firmware", vendor: "dell", versions: [ { lessThan: "1.21.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_rugged_7220_extreme_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7220_rugged_extreme_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_7220_rugged_extreme_firmware", vendor: "dell", versions: [ { lessThan: "1.33.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_7490_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7390_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7290_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_7290_firmware", vendor: "dell", versions: [ { lessThan: "1.35.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_7520_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7420_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:latitude_7320_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_7320_firmware", vendor: "dell", versions: [ { lessThan: "1.34.2", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:latitude_9520_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "latitude_9520_firmware", vendor: "dell", versions: [ { lessThan: "1.30.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:optiplex_3000_thin_client_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_3000_thin_client_firmware", vendor: "dell", versions: [ { lessThan: "1.15.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_13_9310_2-in-1_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3080_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_3080_firmware", vendor: "dell", versions: [ { lessThan: "2.22.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:xps_8940_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_3090_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_3090_firmware", vendor: "dell", versions: [ { lessThan: "2.16.0", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:optiplex_7090_tower_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5090_micro_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5090_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5090_tower_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_5090_tower_firmware", vendor: "dell", versions: [ { lessThan: "1.22.2", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:optiplex_7400_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5400_all-in-one_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_5400_all-in-one_firmware", vendor: "dell", versions: [ { lessThan: "1.1.37", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:optiplex_7490_all-in-one_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:optiplex_5490_all-in-one_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "optiplex_5490_all-in-one_firmware", vendor: "dell", versions: [ { lessThan: "1.27.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3460_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3460_xe_small_form_factor_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3260_compact_firmware:-:*:*:*:*:*:*:*", "cpe:2.3:o:dell:precision_3260_xe_compact_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "precision_3260_xe_compact_firmware", vendor: "dell", versions: [ { lessThan: "3.3.2", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3650_tower_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "precision_3650_tower_firmware", vendor: "dell", versions: [ { lessThan: "1.28.1", status: "affected", version: "0", versionType: "semver", }, ], }, { cpes: [ "cpe:2.3:o:dell:precision_3660_firmware:-:*:*:*:*:*:*:*", ], defaultStatus: "unaffected", product: "precision_3660_firmware", vendor: "dell", versions: [ { lessThan: "2.11.1", status: "affected", version: "0", versionType: "semver", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2023-43078", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-08-28T14:17:19.963412Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-08-28T22:31:00.645Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Dell Client Platform, Dell Dock Firmware", vendor: "Dell", versions: [ { lessThan: "1.27.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.22.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.14.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.11.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.19.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.20.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.24.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.26.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.12.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.28.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.17.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.23.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.30.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.25.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.16.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.12.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.24.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.8.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.18.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.29.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.24.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.22.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.31.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.25.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.10.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.34.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.32.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.36.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.10.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.36.2", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.21.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.33.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.35.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.34.2", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.30.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.15.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.22.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.16.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.22.2", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.1.37", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.27.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "3.3.2", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.28.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.11.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.28.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.28.8", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.1.16", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.20.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.9.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.6.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.1.15", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.23.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "3.20.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.19.1", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "2.9.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.13.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "1.0.14.20", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "01.00.15", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "01.00.36", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.62.156.006", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.66.128.015", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.111.022", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.61.124.014", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.147.004", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.134.013", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.66.131.016", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.135.009", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.162.003", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.119.017", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.62.140.014", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.166.001", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.163.002", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.62.139.013", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.112.015", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.116.019", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.143.009", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.145.004", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.117.031", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.62.102.024", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.65.108.018", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.69.120.013", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "4.46.106.031", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "7.2.2.0", status: "affected", version: "N/A", versionType: "semver", }, { lessThan: "74.64", status: "affected", version: "N/A", versionType: "semver", }, ], }, ], datePublic: "2024-02-22T06:30:00.000Z", descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.", }, ], value: "Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-59", description: "CWE-59: Improper Link Resolution Before File Access ('Link Following')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-28T05:33:16.899Z", orgId: "c550e75a-17ff-4988-97f0-544cde3820fe", shortName: "dell", }, references: [ { tags: [ "vendor-advisory", ], url: "https://www.dell.com/support/kbdoc/en-us/000217981/dsa-2023-362-security-update-for-dell-dock-firmware-and-dell-client-platform-for-an-improper-link-resolution-vulnerability", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "c550e75a-17ff-4988-97f0-544cde3820fe", assignerShortName: "dell", cveId: "CVE-2023-43078", datePublished: "2024-08-28T05:33:16.899Z", dateReserved: "2023-09-15T07:02:11.648Z", dateUpdated: "2024-08-28T22:31:00.645Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.