BDU:2025-04595High
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Share link
Anyone with the link can open this vulnerability.
Уязвимость реализации механизма прямого доступа к памяти DMA (Direct memory access) системы BIOS микропрограммного обеспечения ноутбуков De…
CVSS
7.5
High
EPSS
0.00
p0
Published
2025-01-01
Updated
2025-01-01
Description
Уязвимость реализации механизма прямого доступа к памяти DMA (Direct memory access) системы BIOS микропрограммного обеспечения ноутбуков Dell связана с ошибками синхронизации при использовании общего ресурса. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код
Affected products
Dell technologies Alienware area 51m r1Dell technologies Alienware area 51m r2Dell technologies Alienware aurora r8Dell technologies Alienware m15 r2Dell technologies Alienware m15 r3Dell technologies Alienware m15 r4Dell technologies Alienware m17 r2Dell technologies Alienware m17 r3Dell technologies Alienware m17 r4Dell technologies Alienware x15 r1Dell technologies Alienware x15 r2Dell technologies Alienware x17 r1Dell technologies Alienware x17 r2Dell technologies Chengming 3900Dell technologies Chengming 3990Dell technologies Chengming 3991Dell technologies Embedded box pc 3000Dell technologies Embedded box pc 5000Dell technologies Inspiron 3482Dell technologies Inspiron 3502
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Timeline
2025-01-01
Published
2025-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: L
Low (L)
User Interaction
UI: R
Required (R)
Scope
S: C
Changed (C)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
| Product | Vendor | Status |
|---|---|---|
| alienware area 51m r1 | dell technologies | Tracked |
| alienware area 51m r2 | dell technologies | Tracked |
| alienware aurora r8 | dell technologies | Tracked |
| alienware m15 r2 | dell technologies | Tracked |
| alienware m15 r3 | dell technologies | Tracked |
| alienware m15 r4 | dell technologies | Tracked |
| alienware m17 r2 | dell technologies | Tracked |
| alienware m17 r3 | dell technologies | Tracked |
| alienware m17 r4 | dell technologies | Tracked |
| alienware x15 r1 | dell technologies | Tracked |
| alienware x15 r2 | dell technologies | Tracked |
| alienware x17 r1 | dell technologies | Tracked |
| alienware x17 r2 | dell technologies | Tracked |
| chengming 3900 | dell technologies | Tracked |
| chengming 3990 | dell technologies | Tracked |
| chengming 3991 | dell technologies | Tracked |
| embedded box pc 3000 | dell technologies | Tracked |
| embedded box pc 5000 | dell technologies | Tracked |
| inspiron 3482 | dell technologies | Tracked |
| inspiron 3502 | dell technologies | Tracked |
Showing first 20 of 32
Source databases
BDU
BDU
Data Bank of Information Security Threats
BDU ФСТЭК is the authoritative Russian source of vulnerability information, covering both international CVEs relevant to domestic software and unique Russian-disclosed issues. Entries contain severity, affected product lists (in Russian), and mitigation recommendations.
Region
RU
Updates
1 ч
License
Открытые данные
Russian federal catalog of vulnerabilities and threats maintained by FSTEC. Required for compliance with Russian information security regulations (Приказ №17, Приказ №21).
https://bdu.fstec.ru →Related vulnerabilities