BDU:2022-01431High
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Share link
Anyone with the link can open this vulnerability.
Уязвимость микропрограммного обеспечения BIOS ноутбуков Dell вызвана выходом операции за границы буфера в памяти. Эксплуатация уязвимости м…
CVSS
8.2
High
EPSS
0.00
p0
Published
2022-01-01
Updated
2022-01-01
Description
Уязвимость микропрограммного обеспечения BIOS ноутбуков Dell вызвана выходом операции за границы буфера в памяти. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код
Affected products
Dell technologies Alienware 15 r3Dell technologies Alienware 15 r4Dell technologies Alienware 17 r4Dell technologies Alienware 17 r5Dell technologies Alienware area 51m r1Dell technologies Alienware area 51m r2Dell technologies Alienware aurora r8Dell technologies Alienware m15 r2Dell technologies Alienware m15 r3Dell technologies Alienware m15 r4Dell technologies Alienware m17 r2Dell technologies Alienware m17 r3Dell technologies Alienware m17 r4Dell technologies Alienware x15 r1Dell technologies Alienware x17 r1Dell technologies Edge gateway 3000Dell technologies Edge gateway 5000/5100Dell technologies Embedded box pc 3000Dell technologies Embedded box pc 5000Dell technologies G15 5515
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Timeline
2022-01-01
Published
2022-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: H
High (H)
User Interaction
UI: N
None (N)
Scope
S: C
Changed (C)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
| Product | Vendor | Status |
|---|---|---|
| alienware 15 r3 | dell technologies | Tracked |
| alienware 15 r4 | dell technologies | Tracked |
| alienware 17 r4 | dell technologies | Tracked |
| alienware 17 r5 | dell technologies | Tracked |
| alienware area 51m r1 | dell technologies | Tracked |
| alienware area 51m r2 | dell technologies | Tracked |
| alienware aurora r8 | dell technologies | Tracked |
| alienware m15 r2 | dell technologies | Tracked |
| alienware m15 r3 | dell technologies | Tracked |
| alienware m15 r4 | dell technologies | Tracked |
| alienware m17 r2 | dell technologies | Tracked |
| alienware m17 r3 | dell technologies | Tracked |
| alienware m17 r4 | dell technologies | Tracked |
| alienware x15 r1 | dell technologies | Tracked |
| alienware x17 r1 | dell technologies | Tracked |
| edge gateway 3000 | dell technologies | Tracked |
| edge gateway 5000/5100 | dell technologies | Tracked |
| embedded box pc 3000 | dell technologies | Tracked |
| embedded box pc 5000 | dell technologies | Tracked |
| g15 5515 | dell technologies | Tracked |
Showing first 20 of 45
Source databases
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Related vulnerabilities