CVE-2021-21522
8.2
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Summary
Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell | CPG BIOS | unspecified < 1.13.0 | affected |
Weaknesses
- CWE-255: CWE-255: Credentials Management
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.