Article Number: 000205329
Medium
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-34399 | Dell BIOS contains a buffer access vulnerability. A malicious user with administrator privileges may potentially exploit this vulnerability by sending input larger than expected in order to read certain sections. | 5.1 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N |
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
CVE-2022-34399 | Dell BIOS contains a buffer access vulnerability. A malicious user with administrator privileges may potentially exploit this vulnerability by sending input larger than expected in order to read certain sections. | 5.1 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N |
Product | BIOS Update Version | BIOS Release Date (MM-DD-YYYY) |
Alienware m15 A6 | 1.4.3 | 09-29-2022 |
Alienware m15 Ryzen Edition R5 | 1.8.0 | 10-26-2022 |
Alienware m17 Ryzen Edition R5 | 1.4.3 | 09-29-2022 |
Dell G15 5515 | 1.8.0 | 10-26-2022 |
Dell G15 5525 | 1.4.3 | 09-29-2022 |
Inspiron 3505 | 1.9.0 | 10-11-2022 |
Inspiron 3515 | 1.9.0 | 10-11-2022 |
Inspiron 3525 | 1.5.0 | 10-13-2022 |
Inspiron 3585 | 1.10.0 | 10-26-2022 |
Inspiron 3595 | 1.5.0 | 10-26-2022 |
Inspiron 3785 | 1.10.0 | 10-26-2022 |
Vostro 3405 | 1.9.0 | 10-11-2022 |
Vostro 3425 | 1.5.0 | 10-13-2022 |
Vostro 3515 | 1.9.0 | 10-11-2022 |
Vostro 3525 | 1.5.0 | 10-13-2022 |
Product | BIOS Update Version | BIOS Release Date (MM-DD-YYYY) |
Alienware m15 A6 | 1.4.3 | 09-29-2022 |
Alienware m15 Ryzen Edition R5 | 1.8.0 | 10-26-2022 |
Alienware m17 Ryzen Edition R5 | 1.4.3 | 09-29-2022 |
Dell G15 5515 | 1.8.0 | 10-26-2022 |
Dell G15 5525 | 1.4.3 | 09-29-2022 |
Inspiron 3505 | 1.9.0 | 10-11-2022 |
Inspiron 3515 | 1.9.0 | 10-11-2022 |
Inspiron 3525 | 1.5.0 | 10-13-2022 |
Inspiron 3585 | 1.10.0 | 10-26-2022 |
Inspiron 3595 | 1.5.0 | 10-26-2022 |
Inspiron 3785 | 1.10.0 | 10-26-2022 |
Vostro 3405 | 1.9.0 | 10-11-2022 |
Vostro 3425 | 1.5.0 | 10-13-2022 |
Vostro 3515 | 1.9.0 | 10-11-2022 |
Vostro 3525 | 1.5.0 | 10-13-2022 |
Dell Technologies thanks Cederic Laumen (@ling_sec) for reporting CVE-2022-34399.
Revision | Date | Description |
1.0 | 2022-11-15 | Initial Release |
Alienware m15 Ryzen Edition R5, Dell G15 5515 Ryzen Edition, Dell G15 5525, Inspiron 3505, Inspiron 3585, Inspiron 3595, Inspiron 3785, Product Security Information, Vostro 3405
Vostro 3425, Vostro 3525
15 Nov 2022
Dell Security Advisory