CVE-2022-32486

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
References
Link Resource
https://www.dell.com/support/kbdoc/000202772 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:dell:bios:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:precision_5820_tower:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:dell:bios:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:precision_7820_tower:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:dell:bios:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:precision_7920_tower:-:*:*:*:*:*:*:*

History

14 Oct 2022, 03:25

Type Values Removed Values Added
New CVE

Information

Published : 2022-10-11 17:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-32486

Mitre link : CVE-2022-32486

CVE.ORG link : CVE-2022-32486


JSON object : View

Products Affected

dell

  • precision_5820_tower
  • bios
  • precision_7820_tower
  • precision_7920_tower
CWE
CWE-20

Improper Input Validation