Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Dell BIOS 输入验证错误漏洞
Vulnerability Description
DELL Dell BIOSConnect是美国戴尔(DELL)公司的一个基础平台,使 BIOS 可连接到 Dell 的 HTTP 后端,并通过 HTTP 方法加载映像。 Dell BIOS 存在输入验证错误漏洞,该漏洞源于对SMRAM中用户提供的输入验证不足。本地管理员可以使用SMI并在目标系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A