Article Number: 000202711
High
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-34383 | Dell Edge Gateway 5200 (EGW) versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM. | 8.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-34383 | Dell Edge Gateway 5200 (EGW) versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM. | 8.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L |
CVE Addressed | Product | Affected Versions | Updated Version | Link to Update |
CVE-2022-34383 | Dell Edge Gateway 5200 | Versions before 1.03.10 | 1.03.10 | Dell Edge Gateway 5200 drivers |
CVE Addressed | Product | Affected Versions | Updated Version | Link to Update |
CVE-2022-34383 | Dell Edge Gateway 5200 | Versions before 1.03.10 | 1.03.10 | Dell Edge Gateway 5200 drivers |
Dell Technologies would like to thank yngweijw for reporting this issue.
Revision | Date | Description |
1.0 | 2022-08-24 | Initial Release |
Dell Edge Gateway 5200
Product Security Information
30 Aug 2022
Dell Security Advisory