CVE-2022-24410
10.02.2023, 11:15
Dell BIOS contains an information exposure vulnerability. An unauthenticated local attacker with physical access to the system and knowledge of the system configuration could potentially exploit this vulnerability to read system information via debug interfaces.Enginsight
| Vendor | Product | Version |
|---|---|---|
| dell | alienware_13_r2_firmware | 𝑥 < 1.13.1 |
| dell | alienware_13_r3_firmware | 𝑥 < 1.12.2 |
| dell | alienware_15_r2_firmware | 𝑥 < 1.13.1 |
| dell | alienware_15_r3_firmware | 𝑥 < 1.12.2 |
| dell | alienware_15_r4_firmware | 𝑥 < 1.13.2 |
| dell | alienware_17_r3_firmware | 𝑥 < 1.13.1 |
| dell | alienware_17_r4_firmware | 𝑥 < 1.12.2 |
| dell | alienware_17_r5_firmware | 𝑥 < 1.13.2 |
| dell | alienware_area_51m_r1_firmware | 𝑥 < 1.15.1 |
| dell | alienware_area_51m_r2_firmware | 𝑥 < 1.8.0 |
| dell | alienware_aurora_r11_firmware | 𝑥 < 1.0.7 |
| dell | alienware_aurora_r7_firmware | 𝑥 < 1.0.24 |
| dell | alienware_aurora_r8_firmware | 𝑥 < 1.0.16 |
| dell | alienware_aurora_r9_firmware | 𝑥 < 1.0.13 |
| dell | alienware_m15_r1_firmware | 𝑥 < 2.8.0 |
| dell | alienware_m15_r2_firmware | 𝑥 < 1.8.1 |
| dell | alienware_m15_r3_firmware | 𝑥 < 1.9.1 |
| dell | alienware_m15_r4_firmware | 𝑥 < 1.5.1 |
| dell | alienware_m15_r6_firmware | 𝑥 < 1.5.1 |
| dell | alienware_m17_r1_firmware | 𝑥 < 2.8.0 |
| dell | alienware_m17_r2_firmware | 𝑥 < 1.8.1 |
| dell | alienware_m17_r3_firmware | 𝑥 < 1.9.1 |
| dell | alienware_m17_r4_firmware | 𝑥 < 1.5.1 |
| dell | chengming_3977_firmware | 𝑥 < 1.12.0 |
| dell | chengming_3980_firmware | 𝑥 < 2.18.0 |
| dell | chengming_3988_firmware | 𝑥 < 1.6.0 |
| dell | chengming_3990_firmware | 𝑥 < 1.6.0 |
| dell | chengming_3991_firmware | 𝑥 < 1.6.0 |
| dell | g15_5511_firmware | 𝑥 < 1.5.0 |
| dell | g15_5511_firmware | 1.9.0 |
| dell | g3_15_3590_firmware | 𝑥 < 1.13.0 |
| dell | g3_3500_firmware | 𝑥 < 1.10.1 |
| dell | g3_3500_firmware | 1.12.0 |
| dell | g3_3579_firmware | 𝑥 < 1.16.0 |
| dell | g3_3779_firmware | 𝑥 < 1.16.0 |
| dell | g5_15_5500_firmware | 𝑥 < 1.10.1 |
| dell | g5_15_5590_firmware | 𝑥 < 1.15.3 |
| dell | g5_5000_firmware | 𝑥 < 1.2.0 |
| dell | g5_5090_firmware | 𝑥 < 1.8.4 |
| dell | g7_15_7500_firmware | 𝑥 < 1.10.0 |
| dell | g7_15_7590_firmware | 𝑥 < 1.15.3 |
| dell | g7_17_7700_firmware | 𝑥 < 1.10.0 |
| dell | g7_17_7790_firmware | 𝑥 < 1.15.3 |
| dell | latitude_3480_firmware | 𝑥 < 1.16.1 |
| dell | latitude_3580_firmware | 𝑥 < 1.16.1 |
| dell | embedded_box_pc_5000_firmware | 𝑥 < 1.10.2 |
| dell | inspiron_14_5410_2-in-1_firmware | 𝑥 < 2.1.1 |
| dell | inspiron_15_3511_firmware | 𝑥 < 1.5.1 |
| dell | inspiron_3268_firmware | 𝑥 < 1.16.1 |
| dell | inspiron_3277_firmware | 𝑥 < 1.15.1 |
| dell | inspiron_3280_firmware | 𝑥 < 1.11.1 |
| dell | inspiron_3470 | 𝑥 < 2.18.0 |
| dell | inspiron_3471_firmware | 𝑥 < 1.6.0 |
| dell | inspiron_3477_firmware | 𝑥 < 1.15.1 |
| dell | inspiron_3480_firmware | 𝑥 < 1.14.0 |
| dell | inspiron_3480_aio_firmware | 𝑥 < 1.11.1 |
| dell | inspiron_3481_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3482_firmware | 𝑥 < 1.10.0 |
| dell | inspiron_3490_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3493_firmware | 𝑥 < 1.16.0 |
| dell | inspiron_3501_firmware | 𝑥 < 1.8.0 |
| dell | inspiron_3502_firmware | 𝑥 < 1.3.0 |
| dell | inspiron_3580_firmware | 𝑥 < 1.14.0 |
| dell | inspiron_3581_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3582_firmware | 𝑥 < 1.10.0 |
| dell | inspiron_3584_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3590_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3593_firmware | 𝑥 < 1.16.0 |
| dell | inspiron_3668_firmware | 𝑥 < 1.16.1 |
| dell | inspiron_3670_firmware | 𝑥 < 2.18.0 |
| dell | inspiron_3671_firmware | 𝑥 < 1.6.0 |
| dell | inspiron_3780_firmware | 𝑥 < 1.14.0 |
| dell | inspiron_3781_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3782_firmware | 𝑥 < 1.10.0 |
| dell | inspiron_3790_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_3793_firmware | 𝑥 < 1.16.0 |
| dell | inspiron_3880_firmware | 𝑥 < 1.5.1 |
| dell | inspiron_3881_firmware | 𝑥 < 1.5.1 |
| dell | inspiron_3891_firmware | 𝑥 < 1.0.20 |
| dell | inspiron_5300_firmware | 𝑥 < 1.8.0 |
| dell | inspiron_5301_firmware | 𝑥 < 1.10.1 |
| dell | inspiron_5310_firmware | 𝑥 < 2.2.2 |
| dell | inspiron_5390_firmware | 𝑥 < 1.12.1 |
| dell | inspiron_5391_firmware | 𝑥 < 1.13.1 |
| dell | inspiron_5400_firmware | 𝑥 < 1.5.2 |
| dell | inspiron_5400_2-in-1_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_5401_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_5401_aio_firmware | 𝑥 < 1.5.2 |
| dell | inspiron_5402_firmware | 𝑥 < 1.7.1 |
| dell | inspiron_5406_2-in-1_firmware | 𝑥 < 1.7.0 |
| dell | inspiron_5408_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_5409_firmware | 𝑥 < 1.7.1 |
| dell | inspiron_5477_firmware | 𝑥 < 1.2.14 |
| dell | inspiron_5480_firmware | 𝑥 < 2.10.0 |
| dell | inspiron_5480_2-in-1_firmware | 𝑥 < 2.10.0 |
| dell | inspiron_5490_firmware | 𝑥 < 1.14.1 |
| dell | inspiron_5490_aio_firmware | 𝑥 < 1.10.0 |
| dell | inspiron_5491_2-in-1_firmware | 𝑥 < 1.10.1 |
| dell | inspiron_5493_firmware | 𝑥 < 1.16.0 |
| dell | inspiron_5494_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_5501_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_5502_firmware | 𝑥 < 1.7.1 |
| dell | inspiron_5509_firmware | 𝑥 < 1.7.1 |
| dell | inspiron_5508_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_5570_firmware | 𝑥 < 1.5.0 |
| dell | inspiron_5583_firmware | 𝑥 < 1.14.1 |
| dell | inspiron_5584_firmware | 𝑥 < 1.14.1 |
| dell | inspiron_5590_firmware | 𝑥 < 1.14.1 |
| dell | inspiron_5591_2-in-1_firmware | 𝑥 < 1.10.1 |
| dell | inspiron_5593_firmware | 𝑥 < 1.16.0 |
| dell | inspiron_5594_firmware | 𝑥 < 1.13.0 |
| dell | inspiron_5680_firmware | 𝑥 < 2.6.0 |
| dell | inspiron_5770_firmware | 𝑥 < 1.5.0 |
| dell | inspiron_7000_firmware | 𝑥 < 1.13.1 |
| dell | inspiron_7300_firmware | 𝑥 < 1.10.1 |
| dell | inspiron_7300_2-in-1_firmware | 𝑥 < 1.4.1 |
| dell | inspiron_7306_2-in-1_firmware | 𝑥 < 1.7.0 |
| dell | inspiron_7391_2-in-1_firmware | 𝑥 < 1.11.1 |
| dell | inspiron_7400_firmware | 𝑥 < 1.10.1 |
| dell | inspiron_7490_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_7500_firmware | 𝑥 < 1.9.1 |
| dell | inspiron_7500_2-in-1_black_firmware | 𝑥 < 1.4.4 |
| dell | inspiron_7500_2-in-1_silver_firmware | 𝑥 < 1.8.1 |
| dell | inspiron_7501_firmware | 𝑥 < 1.9.1 |
| dell | inspiron_7506_2-in-1_firmware | 𝑥 < 1.7.0 |
| dell | inspiron_7510_firmware | 𝑥 < 1.1.1 |
| dell | inspiron_7590 | 𝑥 < 1.10.0 |
| dell | inspiron_7591 | 𝑥 < 1.10.0 |
| dell | inspiron_7591_2-in-1 | 𝑥 < 1.11.1 |
| dell | inspiron_7610_firmware | 𝑥 < 1.1.1 |
| dell | inspiron_7700_aio_firmware | 𝑥 < 1.5.2 |
| dell | inspiron_7706_2-in-1_firmware | 𝑥 < 1.7.0 |
| dell | inspiron_7777_firmware | 𝑥 < 1.2.14 |
| dell | inspiron_7790_firmware | 𝑥 < 1.10.0 |
| dell | inspiron_7791_2-in-1_firmware | 𝑥 < 1.11.1 |
| dell | inspiron_5491_aio_firmware | 𝑥 < 1.10.0 |
| dell | latitude_13_3380_firmware | 𝑥 < 1.14.1 |
| dell | latitude_3120_firmware | 𝑥 < 1.2.1 |
| dell | latitude_3180_firmware | 𝑥 < 1.14.2 |
| dell | latitude_3189_firmware | 𝑥 < 1.14.2 |
| dell | latitude_3190_firmware | 𝑥 < 1.15.2 |
| dell | latitude_3190_2-in-1_firmware | 𝑥 < 1.15.2 |
| dell | latitude_3300_firmware | 𝑥 < 1.11.0 |
| dell | latitude_3301_firmware | 𝑥 < 1.16.1 |
| dell | latitude_3310_firmware | 𝑥 < 1.10.1 |
| dell | latitude_3310_2-in-1_firmware | 𝑥 < 1.9.1 |
| dell | latitude_3320_firmware | 𝑥 < 1.6.3 |
| dell | latitude_3379_firmware | 𝑥 < 1.0.30 |
| dell | latitude_3390_2-in-1_firmware | 𝑥 < 1.15.0 |
| dell | latitude_3400_firmware | 𝑥 < 1.18.1 |
| dell | latitude_3410_firmware | 𝑥 < 1.10.1 |
| dell | latitude_3420_firmware | 𝑥 < 1.10.1 |
| dell | latitude_3490_firmware | 𝑥 < 1.15.0 |
| dell | latitude_3470_firmware | 𝑥 < 1.20.0 |
| dell | latitude_3500_firmware | 𝑥 < 1.18.1 |
| dell | latitude_3510_firmware | 𝑥 < 1.10.1 |
| dell | latitude_3520_firmware | 𝑥 < 1.10.1 |
| dell | latitude_3570_firmware | 𝑥 < 1.20.0 |
| dell | latitude_3590_firmware | 𝑥 < 1.15.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorThe product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
- CWE-312 - Cleartext Storage of Sensitive InformationThe product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.