CVE-2022-22566
6.9
CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Summary
Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell | CPG BIOS | unspecified < 1.15 | affected |
Weaknesses
- CWE-1190: CWE-1190: DMA Device Enabled Too Early in Boot Phase
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.