CVE-2021-21522

Summary

Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface.

Affected Software

VendorProductVersion RangeStatus
DellCPG BIOSunspecified < 1.13.0affected

Weaknesses

  • CWE-255: CWE-255: Credentials Management

ADP Enrichment

CVE Program Container

Additional References

References