CVE-2022-22566

Summary

Select Dell Client Commercial and Consumer platforms contain a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

Affected Software

VendorProductVersion RangeStatus
DellCPG BIOSunspecified < 1.15affected

Weaknesses

  • CWE-1190: CWE-1190: DMA Device Enabled Too Early in Boot Phase

ADP Enrichment

CVE Program Container

Additional References

References