CVE-2021-36283 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 HIGH	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
dell	CNA	7.5 HIGH	LOCAL	HIGH	HIGH	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 12%

Affected Products (NVD)

Vendor	Product	Version
dell	chengming_3990_firmware	𝑥 < 1.3.1
dell	chengming_3991_firmware	𝑥 < 1.3.1
dell	g3_15_3500_firmware	𝑥 < 1.7.1
dell	g3_15_3590_firmware	𝑥 < 1.12.0
dell	g3_15_5500_firmware	𝑥 < 1.7.1
dell	inspiron_3493_firmware	𝑥 < 1.12.0
dell	inspiron_3501_firmware	𝑥 < 1.1.0
dell	inspiron_3593_firmware	𝑥 < 1.12.0
dell	inspiron_3793_firmware	𝑥 < 1.12.0
dell	inspiron_3880_firmware	𝑥 < 1.3.1
dell	inspiron_3881_firmware	𝑥 < 1.3.1
dell	inspiron_5400_2-in-1_firmware	𝑥 < 1.5.0
dell	inspiron_5490_firmware	𝑥 < 1.12.0
dell	inspiron_5493_firmware	𝑥 < 1.12.0
dell	inspiron_5498_firmware	𝑥 < 1.12.0
dell	inspiron_5590_firmware	𝑥 < 1.12.0
dell	inspiron_5593_firmware	𝑥 < 1.12.0
dell	inspiron_5598_firmware	𝑥 < 1.12.0
dell	inspiron_7391_2-in-1_firmware	𝑥 < 1.9.1
dell	inspiron_7500_firmware	𝑥 < 1.5.1
dell	inspiron_7500_2-in-1_silver_firmware	𝑥 < 1.5.0
dell	inspiron_7501_firmware	𝑥 < 1.5.1
dell	inspiron_7590_firmware	𝑥 < 1.8.0
dell	inspiron_7591_firmware	𝑥 < 1.8.0
dell	latitude_3310_firmware	𝑥 < 1.8.3
dell	latitude_3310_2-in-1_firmware	𝑥 < 1.17.1
dell	latitude_5300_firmware	𝑥 < 1.12.1
dell	latitude_5300_2-in-1_firmware	𝑥 < 1.12.1
dell	latitude_5310_firmware	𝑥 < 1.4.2
dell	latitude_5310_2_in_1_firmware	1.4.2
dell	latitude_5400_firmware	𝑥 < 1.10.1
dell	latitude_5401_firmware	𝑥 < 1.11.1
dell	latitude_5410_firmware	𝑥 < 1.4.3
dell	latitude_5411_firmware	𝑥 < 1.4.3
dell	latitude_5500_firmware	𝑥 < 1.10.1
dell	latitude_5511_firmware	𝑥 < 1.4.3
dell	latitude_7200_2_in_1_firmware	𝑥 < 1.10.1
dell	latitude_7210_2_in_1_firmware	𝑥 < 1.5.1
dell	latitude_7220ex_rugged_extreme_tablet_firmware	𝑥 < 1.9.1
dell	latitude_7300_firmware	𝑥 < 1.11.1
dell	latitude_7310_firmware	𝑥 < 1.5.1
dell	latitude_7400_firmware	𝑥 < 1.11.1
dell	latitude_7400_2-in-1_firmware	𝑥 < 1.10.0
dell	latitude_7410_firmware	𝑥 < 1.5.1
dell	latitude_9410_firmware	𝑥 < 1.5.1
dell	latitude_9510_firmware	𝑥 < 1.4.2
dell	optiplex_3080_firmware	𝑥 < 1.3.1
dell	optiplex_3280_aio_firmware	𝑥 < 1.3.1
dell	optiplex_5080_firmware	𝑥 < 1.3.1
dell	optiplex_5480_aio_firmware	𝑥 < 1.4.0
dell	optiplex_7080_firmware	𝑥 < 1.3.10
dell	optiplex_7480_aio_firmware	𝑥 < 1.6.2
dell	optiplex_7780_aio_firmware	𝑥 < 1.6.2
dell	precision_3440_firmware	𝑥 < 1.3.10
dell	precision_3540_firmware	𝑥 < 1.10.1
dell	precision_3541_firmware	𝑥 < 1.11.1
dell	precision_3550_firmware	𝑥 < 1.4.3
dell	precision_3551_firmware	𝑥 < 1.4.3
dell	precision_3640_tower_firmware	𝑥 < 1.4.3
dell	precision_5540_firmware	𝑥 < 1.9.1
dell	precision_5550_firmware	𝑥 < 1.6.1
dell	precision_5750_firmware	𝑥 < 1.6.3
dell	precision_7540_firmware	𝑥 < 1.11.2
dell	precision_7550_firmware	𝑥 < 1.6.2
dell	precision_7740_firmware	𝑥 < 1.11.2
dell	precision_7750_firmware	𝑥 < 1.6.2
dell	vostro_3401_firmware	𝑥 < 1.1.0
dell	vostro_3491_firmware	𝑥 < 1.12.0
dell	vostro_3501_firmware	𝑥 < 1.1.0
dell	vostro_3591_firmware	𝑥 < 1.12.0
dell	vostro_3681_firmware	𝑥 < 1.3.1
dell	vostro_3881_firmware	𝑥 < 1.3.1
dell	vostro_3888_firmware	𝑥 < 1.3.1
dell	vostro_5490_firmware	𝑥 < 1.12.0
dell	vostro_5590_firmware	𝑥 < 1.12.0
dell	vostro_7500_firmware	𝑥 < 1.5.1
dell	vostro_7590_firmware	𝑥 < 1.8.0
dell	wyse_5470_firmware	𝑥 < 1.6.0
dell	xps_13_9300_firmware	𝑥 < 1.4.1
dell	xps_13_9380_firmware	𝑥 < 1.12.0
dell	xps_17_9700_firmware	𝑥 < 1.6.3
dell	xps_7380_firmware	𝑥 < 1.7.0
dell	xps_7590_firmware	𝑥 < 1.9.1
dell	xps_7390_2-in-1_firmware	𝑥 < 1.7.1
dell	xps_9500_firmware	𝑥 < 1.6.1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://www.dell.com/support/kbdoc/000191495/