CVE-2022-34399: Buffer Overflow
First published: Wed Jan 18 2023(Updated: )
Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. A malicious user with admin privileges could potentially exploit this vulnerability by sending input larger than expected in order to leak certain sections of SMRAM.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Alienware M15 A6 Firmware | <1.4.3 | |
| Dell Alienware M15 A6 | ||
| Dell Alienware M15 Ryzen Edition R5 Firmware | <1.8.0 | |
| Dell Alienware M15 Ryzen Edition R5 | ||
| Dell Alienware M17 Ryzen Edition R5 Firmware | <1.4.3 | |
| Dell Alienware M17 Ryzen Edition R5 | ||
| Dell G15 5515 Firmware | <1.8.0 | |
| Dell G15 5515 | ||
| Dell G15 5525 Firmware | <1.4.3 | |
| Dell G15 5525 | ||
| Dell Inspiron 3505 Firmware | <1.9.0 | |
| Dell Inspiron 3505 | ||
| Dell Inspiron 3515 Firmware | <1.9.0 | |
| Dell Inspiron 3515 | ||
| Dell Inspiron 3525 Firmware | <1.5.0 | |
| Dell Inspiron 3525 | ||
| Dell Inspiron 3585 Firmware | <1.10.0 | |
| Dell Inspiron 3585 | ||
| Dell Inspiron 3595 Firmware | <1.5.0 | |
| Dell Inspiron 3595 | ||
| Dell Inspiron 3785 Firmware | <1.10.0 | |
| Dell Inspiron 3785 | ||
| Dell Vostro 3405 Firmware | <1.9.0 | |
| Dell Vostro 3405 | ||
| Dell Vostro 3425 Firmware | <1.5.0 | |
| Dell Vostro 3425 | ||
| Dell Vostro 3515 Firmware | <1.9.0 | |
| Dell Vostro 3515 | ||
| Dell Vostro 3525 Firmware | <1.5.0 | |
| Dell Vostro 3525 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-34399?
CVE-2022-34399 is a vulnerability found in Dell Alienware m17 R5 BIOS version prior to 1.2.2 that allows a malicious user with admin privileges to exploit a buffer access vulnerability.
How severe is CVE-2022-34399?
CVE-2022-34399 has a severity score of 2.3, which is considered medium severity.
How can the Dell Alienware m17 R5 BIOS vulnerability be exploited?
The vulnerability in Dell Alienware m17 R5 BIOS can be exploited by sending input larger than expected to leak certain sections of SMRAM.
Which Dell Alienware models are affected by CVE-2022-34399?
Dell Alienware M15 A6 Firmware, Dell Alienware M15 Ryzen Edition R5 Firmware, and Dell Alienware M17 Ryzen Edition R5 Firmware are affected by CVE-2022-34399.
How can I fix CVE-2022-34399?
To fix CVE-2022-34399, update the Dell Alienware m17 R5 BIOS to version 1.2.2 or later.
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/references
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell alienware m15 a6 firmware
- canonical/dell alienware m15 a6
- canonical/dell alienware m15 ryzen edition r5 firmware
- canonical/dell alienware m15 ryzen edition r5
- canonical/dell alienware m17 ryzen edition r5 firmware
- canonical/dell alienware m17 ryzen edition r5
- canonical/dell g15 5515 firmware
- canonical/dell g15 5515
- canonical/dell g15 5525 firmware
- canonical/dell g15 5525
- canonical/dell inspiron 3505 firmware
- canonical/dell inspiron 3505
- canonical/dell inspiron 3515 firmware
- canonical/dell inspiron 3515
- canonical/dell inspiron 3525 firmware
- canonical/dell inspiron 3525
- canonical/dell inspiron 3585 firmware
- canonical/dell inspiron 3585
- canonical/dell inspiron 3595 firmware
- canonical/dell inspiron 3595
- canonical/dell inspiron 3785 firmware
- canonical/dell inspiron 3785
- canonical/dell vostro 3405 firmware
- canonical/dell vostro 3405
- canonical/dell vostro 3425 firmware
- canonical/dell vostro 3425
- canonical/dell vostro 3515 firmware
- canonical/dell vostro 3515
- canonical/dell vostro 3525 firmware
- canonical/dell vostro 3525