How severe is CVE-2022-34390?

CVE-2022-34390 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-34390

7.5HIGH

Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SM

Published: 10/12/2022Updated: 11/21/2024

Description

Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

AI AnalysisPowered by AI

Affected Products

dellalienware_area-51_r5_firmware

dellalienware_area-51_r5

dellalienware_area-51_r4_firmware

dellalienware_area-51_r4

References

https://www.dell.com/support/kbdoc/000203882
Vendor Advisory
https://www.dell.com/support/kbdoc/000203882
Vendor Advisory