Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges, could bypass the BIOS Administrator authentication to restore BIOS Setup configuration to default values.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:H
Vulnerability Type
授权机制不恰当
Vulnerability Title
多款Dell产品授权问题漏洞
Vulnerability Description
Dell ChengMing 3967等都是美国戴尔(Dell)公司的一款台式计算机。 多款Dell产品中的Dell Manageability接口存在授权问题漏洞。攻击者可利用该漏洞绕过BIOS Administrator身份验证,将BIOS Setup配置恢复到默认值。以下产品及版本受到影响:Dell ChengMing 3967;ChengMing 3977;ChengMing 3980;ChengMing 3988;ChengMing 3990;ChengMing 3991;Dell G3 15
CVSS Information
N/A
Vulnerability Type
N/A