BDU:2023-00466Medium
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Share link
Anyone with the link can open this vulnerability.
Уязвимость микропрограммного обеспечения BIOS ноутбуков Dell связана с выходом операции за границы буфера в памяти. Эксплуатация уязвимости…
CVSS
5.1
Medium
EPSS
0.00
p0
Published
2023-01-01
Updated
2023-01-01
Description
Уязвимость микропрограммного обеспечения BIOS ноутбуков Dell связана с выходом операции за границы буфера в памяти. Эксплуатация уязвимости может позволить нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации
Affected products
Dell technologies Alienware m15 a6Dell technologies Alienware m15 ryzen edition r5Dell technologies Alienware m17 ryzen edition r5Dell technologies G15 5515Dell technologies G15 5525Dell technologies Inspiron 3505Dell technologies Inspiron 3515Dell technologies Inspiron 3525Dell technologies Inspiron 3585Dell technologies Inspiron 3595Dell technologies Inspiron 3785Dell technologies Vostro 3405Dell technologies Vostro 3425Dell technologies Vostro 3515Dell technologies Vostro 3525
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N
Timeline
2023-01-01
Published
2023-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: H
High (H)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: L
Low (L)
Integrity Impact
I: H
High (H)
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
| Product | Vendor | Status |
|---|---|---|
| alienware m15 a6 | dell technologies | Tracked |
| alienware m15 ryzen edition r5 | dell technologies | Tracked |
| alienware m17 ryzen edition r5 | dell technologies | Tracked |
| g15 5515 | dell technologies | Tracked |
| g15 5525 | dell technologies | Tracked |
| inspiron 3505 | dell technologies | Tracked |
| inspiron 3515 | dell technologies | Tracked |
| inspiron 3525 | dell technologies | Tracked |
| inspiron 3585 | dell technologies | Tracked |
| inspiron 3595 | dell technologies | Tracked |
| inspiron 3785 | dell technologies | Tracked |
| vostro 3405 | dell technologies | Tracked |
| vostro 3425 | dell technologies | Tracked |
| vostro 3515 | dell technologies | Tracked |
| vostro 3525 | dell technologies | Tracked |
Source databases
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Related vulnerabilities