Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell BIOS contains a Time-of-check Time-of-use vulnerability. A local authenticated malicious user could\u00a0potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI to gain arbitrary code execution on the system.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
Dell BIOS 安全漏洞
Vulnerability Description
Dell BIOS是美国戴尔(Dell)公司的一个计算机主板上小型内存芯片上的嵌入式软件。 Dell BIOS存在安全漏洞,该漏洞源于存在TOCTTOU漏洞,经过身份验证的本地恶意用户可能会通过在SMI期间使用特定时间的DMA事务来利用此漏洞,从而在系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A