CVE-2022-34403 - OpenCVE

Dell BIOS contains a Stack based buffer overflow vulnerability. A local authenticated attacker could potentially exploit this vulnerability by using an SMI to send larger than expected input to a parameter to gain arbitrary code execution in SMRAM.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Dell	Vostro 5510 Latitude 5521 Inspiron 5415 Inspiron 15 3511 Firmware Inspiron 5405 Firmware Inspiron 5310 Firmware Latitude 3520 Firmware Inspiron 3475 Latitude 7320 Detachable Inspiron 7510 Latitude 9520 Inspiron 5425 Firmware Optiplex 5490 All-in-one Firmware Vostro 3510 Firmware Vostro 3425 Latitude Rugged 7330 Optiplex 5090 Inspiron 3275 Precision 7560 Firmware Alienware M15 R7 Firmware Alienware M15 Ryzen Edition R5 Precision 5760 Firmware Latitude 7520 Inspiron 7405 2-in-1 Firmware Alienware M15 Ryzen Edition R5 Firmware Inspiron 3475 Firmware Inspiron 3785 Firmware Latitude 5421 Firmware Inspiron 5405 G15 5525 Inspiron 7510 Firmware Inspiron 3595 Firmware Latitude 3420 Firmware Latitude 3320 Firmware G15 5511 Latitude 5420 Latitude 5521 Firmware Alienware M17 R5 Amd Firmware Inspiron 5510 Inspiron 14 5410 2-in-1 Inspiron 7425 Optiplex 5090 Firmware Latitude 5320 Firmware Inspiron 3515 Inspiron 5515 Inspiron 7610 Firmware Precision 3561 Vostro 3525 Firmware Vostro 3890 Firmware Inspiron 3515 Firmware Inspiron 5310 Vostro 3405 Inspiron 5585 Firmware Inspiron 3595 Inspiron 5415 Firmware Inspiron 5505 Firmware G5 Se 5505 Optiplex 7090 Ultra Firmware G15 5525 Firmware Inspiron 3275 Firmware Latitude 3420 Latitude 5320 Latitude 7320 Latitude 7420 G15 5511 Firmware Inspiron 7425 Firmware Inspiron 5410 Inspiron 5510 Firmware Inspiron 3585 Alienware M17 R5 Amd Vostro 3690 Inspiron 5410 Firmware Vostro 3890 Inspiron 3195 2-in-1 Firmware Latitude 7320 Firmware Inspiron 5515 Firmware Optiplex 7090 Aio Inspiron 3785 Precision 3450 Firmware Inspiron 7415 Precision 3561 Firmware Xps 17 9710 Vostro 3690 Firmware Precision 5560 Firmware Vostro 5515 Firmware Alienware M15 R6 Vostro 5415 Firmware Inspiron 5585 Latitude 9420 Firmware Vostro 5415 Optiplex 7090 Aio Firmware Vostro 3425 Firmware Latitude 3320 Vostro 5625 Firmware Latitude 9520 Firmware Inspiron 5425 Latitude 9420 G15 5510 Vostro 5515 Inspiron 3195 2-in-1 G15 5510 Firmware Latitude 3520 Vostro 3510 Latitude Rugged 7330 Firmware Inspiron 3891 Vostro 5310 Inspiron 5485 Precision 3650 Tower Vostro 5410 Vostro 5510 Firmware Vostro 7510 Firmware G5 Se 5505 Firmware Alienware M15 R7 Xps 17 9710 Firmware Precision 5560 Vostro 5890 Firmware Inspiron 5485 Firmware Inspiron 15 3511 Inspiron 14 5410 2-in-1 Firmware Inspiron 3525 Firmware Vostro 5410 Firmware Inspiron 3891 Firmware Inspiron 7405 2-in-1 Precision 5760 Latitude Rugged 5430 Firmware Alienware M15 R6 Firmware Precision 3560 Vostro 3515 G15 5515 Vostro 3405 Firmware Inspiron 3525 Xps 15 9510 G15 5515 Firmware Xps 15 9510 Firmware Inspiron 5505 Latitude 5421 Optiplex 7090 Ultra Precision 7560 Inspiron 5485 2-in-1 Firmware Vostro 5310 Firmware Vostro 3515 Firmware Optiplex 7090 Tower Vostro 7510 Optiplex 7090 Tower Firmware Inspiron 3585 Firmware Inspiron 5485 2-in-1 Inspiron 7415 Firmware Inspiron 3505 Vostro 3525 Latitude 5520 Firmware Latitude 7320 Detachable Firmware Precision 3650 Tower Firmware Vostro 5890 Vostro 5625 Latitude 7420 Firmware Latitude 7520 Firmware Latitude Rugged 5430 Precision 3450 Latitude 5420 Firmware Latitude 5520 Optiplex 5490 All-in-one Precision 7760 Firmware Inspiron 3505 Firmware Precision 7760 Precision 3560 Firmware Inspiron 7610

Configuration 1 [-]

AND

cpe:2.3:o:dell:alienware_m15_r6_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:alienware_m15_r6:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:dell:alienware_m15_r7_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:alienware_m15_r7:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:dell:alienware_m15_ryzen_edition_r5_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:alienware_m15_ryzen_edition_r5:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:dell:alienware_m17_r5_amd_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:alienware_m17_r5_amd:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:dell:g15_5510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:g15_5510:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:dell:g15_5511_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:g15_5511:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:dell:g15_5515_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:g15_5515:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:dell:g15_5525_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:g15_5525:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:dell:g5_se_5505_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:g5_se_5505:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:dell:inspiron_14_5410_2-in-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_14_5410_2-in-1:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:dell:inspiron_15_3511_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_15_3511:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:dell:inspiron_3195_2-in-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3195_2-in-1:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:dell:inspiron_3275_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3275:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:dell:inspiron_3475_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3475:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:dell:inspiron_3505_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3505:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:dell:inspiron_3515_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3515:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:dell:inspiron_3525_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3525:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:dell:inspiron_3585_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3585:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:dell:inspiron_3595_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3595:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:dell:inspiron_3785_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3785:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:dell:inspiron_3891_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_3891:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:dell:inspiron_5310_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5310:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:dell:inspiron_5405_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5405:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:dell:inspiron_5410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5410:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:dell:inspiron_5415_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5415:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:dell:inspiron_5425_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5425:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:dell:inspiron_5485_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5485:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:dell:inspiron_5485_2-in-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5485_2-in-1:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:dell:inspiron_5505_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5505:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:dell:inspiron_5510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5510:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:dell:inspiron_5515_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5515:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:dell:inspiron_5585_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_5585:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:dell:inspiron_7405_2-in-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_7405_2-in-1:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:dell:inspiron_7415_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_7415:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:dell:inspiron_7425_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_7425:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:dell:inspiron_7510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_7510:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:dell:inspiron_7610_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:inspiron_7610:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:dell:latitude_3320_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_3320:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:dell:latitude_3420_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_3420:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:dell:latitude_3520_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_3520:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:dell:latitude_5320_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_5320:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:dell:latitude_5420_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_5420:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:dell:latitude_5520_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_5520:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:dell:latitude_5521_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_5521:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:dell:latitude_7320_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_7320:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:dell:latitude_7320_detachable_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_7320_detachable:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:dell:latitude_7420_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_7420:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:dell:latitude_7520_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_7520:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:dell:latitude_9420_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_9420:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:dell:latitude_9520_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_9520:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:dell:latitude_rugged_5430_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_rugged_5430:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:dell:latitude_rugged_7330_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_rugged_7330:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:dell:latitude_5421_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:latitude_5421:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:dell:optiplex_5090_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:optiplex_5090:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:dell:optiplex_5490_all-in-one_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:optiplex_5490_all-in-one:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:dell:optiplex_7090_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:optiplex_7090_tower:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:dell:optiplex_7090_ultra_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:optiplex_7090_ultra:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:dell:optiplex_7090_aio_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:optiplex_7090_aio:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:dell:precision_3450_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_3450:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:dell:precision_3560_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_3560:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:dell:precision_3561_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_3561:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:dell:precision_3650_tower_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_3650_tower:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:dell:precision_5560_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_5560:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:dell:precision_5760_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_5760:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:dell:precision_7560_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_7560:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:dell:precision_7760_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:precision_7760:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:dell:vostro_3405_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3405:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:dell:vostro_3425_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3425:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:dell:vostro_3510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3510:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:dell:vostro_3515_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3515:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:dell:vostro_3525_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3525:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:dell:vostro_3690_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3690:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:dell:vostro_3890_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_3890:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:dell:vostro_5310_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5310:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:dell:vostro_5410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5410:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:dell:vostro_5415_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5415:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:dell:vostro_5510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5510:-:*:*:*:*:*:*:*

Configuration 78 [-]

AND

cpe:2.3:o:dell:vostro_5515_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5515:-:*:*:*:*:*:*:*

Configuration 79 [-]

AND

cpe:2.3:o:dell:vostro_5625_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5625:-:*:*:*:*:*:*:*

Configuration 80 [-]

AND

cpe:2.3:o:dell:vostro_5890_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_5890:-:*:*:*:*:*:*:*

Configuration 81 [-]

AND

cpe:2.3:o:dell:vostro_7510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:vostro_7510:-:*:*:*:*:*:*:*

Configuration 82 [-]

AND

cpe:2.3:o:dell:xps_15_9510_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:xps_15_9510:-:*:*:*:*:*:*:*

Configuration 83 [-]

AND

cpe:2.3:o:dell:xps_17_9710_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dell:xps_17_9710:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.dell.com/support/kbdoc/000205716	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: dell

Published: 2023-02-01T05:19:46.289Z

Updated:

Reserved: 2022-06-23T18:55:17.100Z

Link: CVE-2022-34403

JSON object: View

NVD Information

Status : Modified

Published: 2023-02-01T06:15:08.797

Modified: 2023-11-07T03:48:37.743

Link: CVE-2022-34403

JSON object: View

Redhat Information

No data.

CWE