CVE-2022-34421: Buffer Overflow
First published: Thu Mar 16 2023(Updated: )
Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell R6515 Firmware | <2.9.3 | |
| Dell R6515 Firmware | ||
| Dell R7515 Firmware | <2.9.3 | |
| Dell R7515 Firmware | ||
| Dell r6525 firmware | <2.9.3 | |
| Dell PowerEdge R6525 | ||
| Dell R7525 Firmware | <2.9.3 | |
| Dell PowerEdge R7525 | ||
| Dell XE8545 | <2.9.4 | |
| Dell XE8545 Firmware | ||
| Dell PowerEdge c6525 firmware | ||
| Dell PowerEdge C6525 | ||
| Dell R6415 Firmware | <1.19.0 | |
| Dell PowerEdge R6415 | ||
| Dell R7415 Firmware | <1.19.0 | |
| Dell PowerEdge R7415 | ||
| Dell R7425 | <1.19.0 | |
| Dell PowerEdge R7425 | ||
| Dell R750 Firmware | <1.8.2 | |
| Dell R750 Firmware | ||
| Dell PowerEdge R750XA Firmware | <1.8.2 | |
| Dell PowerEdge R750XA Firmware | ||
| Dell R650 Firmware | <1.8.2 | |
| Dell PowerEdge R650 | ||
| Dell PowerEdge C6520 | <1.8.2 | |
| Dell PowerEdge C6520 | ||
| Dell MX750c Firmware | <1.8.2 | |
| Dell PowerEdge MX750c | ||
| Dell R450 Firmware | <1.8.2 | |
| Dell R450 Firmware | ||
| Dell R550 | <1.8.2 | |
| Dell PowerEdge R550 | ||
| Dell R650 Firmware | <1.8.2 | |
| Dell PowerEdge R650xs | ||
| Dell PowerEdge R750xs Firmware | <1.8.2 | |
| Dell PowerEdge R750xs | ||
| Dell PowerEdge T550 Firmware | <1.8.2 | |
| Dell PowerEdge T550 | ||
| Dell XR11 Firmware | <1.8.2 | |
| Dell XR11 Firmware | ||
| Dell XR12 Firmware | <1.8.2 | |
| Dell PowerEdge XR12 | ||
| Dell R250 Firmware | <1.4.2 | |
| Dell PowerEdge R250 | ||
| Dell R350 | <1.4.2 | |
| Dell PowerEdge R350 | ||
| Dell T150 Firmware | <1.4.2 | |
| Dell T150 Firmware | ||
| Dell PowerEdge T350 Firmware | <1.4.2 | |
| Dell PowerEdge T350 | ||
| Dell R740 Firmware | <2.16.1 | |
| Dell PowerEdge R740 | ||
| Dell PowerEdge R740xd Firmware | <2.16.1 | |
| Dell PowerEdge R740xd | ||
| Dell R640 Firmware | <2.16.1 | |
| Dell R640 Firmware | ||
| Dell PowerEdge R940xa | <2.16.1 | |
| Dell R940 Firmware | ||
| Dell R540 Firmware | <2.16.1 | |
| Dell R540 Firmware | ||
| Dell R440 Firmware | <2.16.1 | |
| Dell R440 Firmware | ||
| Dell PowerEdge T440 Firmware | <2.16.1 | |
| Dell PowerEdge T440 | ||
| Dell XR2 Firmware | <2.16.1 | |
| Dell XR2 Firmware | ||
| Dell PowerEdge R740xd2 Firmware | <2.16.1 | |
| Dell PowerEdge R740xd2 | ||
| Dell R840 Firmware | <2.16.1 | |
| Dell R840 Firmware | ||
| Dell PowerEdge R940xa | <2.16.1 | |
| Dell PowerEdge R940xa Firmware | ||
| Dell PowerEdge T640 Firmware | <2.16.1 | |
| Dell PowerEdge T640 | ||
| Dell PowerEdge C6420 Firmware | <2.16.1 | |
| Dell PowerEdge C6420 | ||
| Dell PowerEdge FC640 Firmware | <2.16.1 | |
| Dell PowerEdge FC640 | ||
| Dell m640 | <2.16.1 | |
| Dell PowerEdge m640 | ||
| Dell PowerEdge m640p Firmware | <2.16.1 | |
| Dell PowerEdge m640p Firmware | ||
| Dell PowerEdge MX740c Firmware | <2.16.1 | |
| Dell MX740c Firmware | ||
| Dell PowerEdge MX840c Firmware | <2.16.1 | |
| Dell MX840c Firmware | ||
| Dell PowerEdge C4140 Firmware | <2.16.1 | |
| Dell PowerEdge C4140 | ||
| Dell DSS 8440 Firmware | <2.16.1 | |
| Dell DSS 8440 Firmware | ||
| Dell PowerEdge T140 Firmware | <2.11.1 | |
| Dell PowerEdge T140 Firmware | ||
| Dell T340 Firmware | <2.11.1 | |
| Dell T340 Firmware | ||
| Dell R240 Firmware | <2.11.1 | |
| Dell PowerEdge R240 | ||
| Dell R340 Firmware | <2.11.1 | |
| Dell R340 Firmware | ||
| Dell PowerEdge XE2420 Firmware | <2.16.0 | |
| Dell PowerEdge XE2420 | ||
| Dell XE7420 Firmware | <2.16.1 | |
| Dell XE7420 Firmware | ||
| Dell XE7440 Firmware | <2.16.1 | |
| Dell XE7440 Firmware | ||
| Dell PowerEdge R730 Firmware | <2.16.0 | |
| Dell PowerEdge R730 | ||
| Dell PowerEdge R730xd Firmware | <2.16.0 | |
| Dell PowerEdge R730xd | ||
| Dell R630 Firmware | <2.16.0 | |
| Dell R630 Firmware | ||
| Dell c4130 firmware | <2.16.0 | |
| Dell PowerEdge C4130 | ||
| Dell R930 Firmware | <2.16.0 | |
| Dell R930 Firmware | ||
| Dell PowerEdge M630 Firmware | <2.16.0 | |
| Dell PowerEdge M630 | ||
| Dell PowerEdge M630p Firmware | <2.16.0 | |
| Dell PowerEdge M630p Firmware | ||
| Dell PowerEdge FC630 Firmware | <2.16.0 | |
| Dell PowerEdge FC630 | ||
| Dell PowerEdge FC430 Firmware | <2.16.0 | |
| Dell PowerEdge FC430 Firmware | ||
| Dell PowerEdge M830 Firmware | <2.16.0 | |
| Dell m830 firmware | ||
| Dell M830 | <2.16.0 | |
| Dell M830 | ||
| Dell PowerEdge FC830 Firmware | <2.16.0 | |
| Dell PowerEdge FC830 | ||
| Dell PowerEdge T630 Firmware | <2.16.0 | |
| Dell PowerEdge T630 | ||
| Dell R530 Firmware | <2.16.0 | |
| Dell R530 Firmware | ||
| Dell R430 Firmware | <2.16.0 | |
| Dell R430 Firmware | ||
| Dell PowerEdge T430 Firmware | <2.16.0 | |
| Dell PowerEdge T430 Firmware | ||
| Dell PowerEdge R830 Firmware | <1.16.0 | |
| Dell PowerEdge R830 | ||
| Dell PowerEdge C6320 Firmware | <2.16.0 | |
| Dell PowerEdge C6320 | ||
| Dell T130 Firmware | <2.16.0 | |
| Dell T130 Firmware | ||
| Dell R230 Firmware | <2.16.0 | |
| Dell R230 Firmware | ||
| Dell PowerEdge T330 Firmware | <2.16.0 | |
| Dell PowerEdge T330 Firmware | ||
| Dell R330 Firmware | <2.16.0 | |
| Dell R330 Firmware | ||
| Dell Storage Nx430 Firmware | <2.16.0 | |
| Dell NX430 Firmware | ||
| Dell Storage Nx3230 Firmware | <2.16.0 | |
| Dell NX3230 Firmware | ||
| Dell Storage NX3330 Firmware | <2.16.0 | |
| Dell NX3330 Firmware | ||
| Dell EMC NX440 Firmware | <2.11.1 | |
| Dell nx440 firmware | ||
| Dell NX3240 Firmware | <2.16.1 | |
| Dell NX3240 Firmware | ||
| Dell NX3340 Firmware | <2.16.1 | |
| Dell NX3340 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-34421?
CVE-2022-34421 has been classified as a medium severity vulnerability mainly due to its potential for arbitrary code execution and denial of service.
How do I fix CVE-2022-34421?
The issue can be mitigated by updating the affected Dell PowerEdge and Precision BIOS to the latest firmware version provided by Dell.
Which systems are impacted by CVE-2022-34421?
CVE-2022-34421 affects various models of Dell PowerEdge BIOS and Dell Precision BIOS versions up to 2.9.3.
What types of attacks can exploit CVE-2022-34421?
Exploitation of CVE-2022-34421 could allow a local malicious user with high privileges to execute arbitrary code or cause a denial of service.
Who should be concerned about CVE-2022-34421?
Organizations using affected Dell PowerEdge and Precision systems should prioritize addressing CVE-2022-34421 to prevent potential exploitation.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/remedy
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell r6515 firmware
- canonical/dell r7515 firmware
- canonical/dell r6525 firmware
- canonical/dell poweredge r6525
- canonical/dell r7525 firmware
- canonical/dell poweredge r7525
- canonical/dell xe8545
- canonical/dell xe8545 firmware
- canonical/dell poweredge c6525 firmware
- canonical/dell poweredge c6525
- canonical/dell r6415 firmware
- canonical/dell poweredge r6415
- canonical/dell r7415 firmware
- canonical/dell poweredge r7415
- canonical/dell r7425
- canonical/dell poweredge r7425
- canonical/dell r750 firmware
- canonical/dell poweredge r750xa firmware
- canonical/dell r650 firmware
- canonical/dell poweredge r650
- canonical/dell poweredge c6520
- canonical/dell mx750c firmware
- canonical/dell poweredge mx750c
- canonical/dell r450 firmware
- canonical/dell r550
- canonical/dell poweredge r550
- canonical/dell poweredge r650xs
- canonical/dell poweredge r750xs firmware
- canonical/dell poweredge r750xs
- canonical/dell poweredge t550 firmware
- canonical/dell poweredge t550
- canonical/dell xr11 firmware
- canonical/dell xr12 firmware
- canonical/dell poweredge xr12
- canonical/dell r250 firmware
- canonical/dell poweredge r250
- canonical/dell r350
- canonical/dell poweredge r350
- canonical/dell t150 firmware
- canonical/dell poweredge t350 firmware
- canonical/dell poweredge t350
- canonical/dell r740 firmware
- canonical/dell poweredge r740
- canonical/dell poweredge r740xd firmware
- canonical/dell poweredge r740xd
- canonical/dell r640 firmware
- canonical/dell poweredge r940xa
- canonical/dell r940 firmware
- canonical/dell r540 firmware
- canonical/dell r440 firmware
- canonical/dell poweredge t440 firmware
- canonical/dell poweredge t440
- canonical/dell xr2 firmware
- canonical/dell poweredge r740xd2 firmware
- canonical/dell poweredge r740xd2
- canonical/dell r840 firmware
- canonical/dell poweredge r940xa firmware
- canonical/dell poweredge t640 firmware
- canonical/dell poweredge t640
- canonical/dell poweredge c6420 firmware
- canonical/dell poweredge c6420
- canonical/dell poweredge fc640 firmware
- canonical/dell poweredge fc640
- canonical/dell m640
- canonical/dell poweredge m640
- canonical/dell poweredge m640p firmware
- canonical/dell poweredge mx740c firmware
- canonical/dell mx740c firmware
- canonical/dell poweredge mx840c firmware
- canonical/dell mx840c firmware
- canonical/dell poweredge c4140 firmware
- canonical/dell poweredge c4140
- canonical/dell dss 8440 firmware
- canonical/dell poweredge t140 firmware
- canonical/dell t340 firmware
- canonical/dell r240 firmware
- canonical/dell poweredge r240
- canonical/dell r340 firmware
- canonical/dell poweredge xe2420 firmware
- canonical/dell poweredge xe2420
- canonical/dell xe7420 firmware
- canonical/dell xe7440 firmware
- canonical/dell poweredge r730 firmware
- canonical/dell poweredge r730
- canonical/dell poweredge r730xd firmware
- canonical/dell poweredge r730xd
- canonical/dell r630 firmware
- canonical/dell c4130 firmware
- canonical/dell poweredge c4130
- canonical/dell r930 firmware
- canonical/dell poweredge m630 firmware
- canonical/dell poweredge m630
- canonical/dell poweredge m630p firmware
- canonical/dell poweredge fc630 firmware
- canonical/dell poweredge fc630
- canonical/dell poweredge fc430 firmware
- canonical/dell poweredge m830 firmware
- canonical/dell m830 firmware
- canonical/dell m830
- canonical/dell poweredge fc830 firmware
- canonical/dell poweredge fc830
- canonical/dell poweredge t630 firmware
- canonical/dell poweredge t630
- canonical/dell r530 firmware
- canonical/dell r430 firmware
- canonical/dell poweredge t430 firmware
- canonical/dell poweredge r830 firmware
- canonical/dell poweredge r830
- canonical/dell poweredge c6320 firmware
- canonical/dell poweredge c6320
- canonical/dell t130 firmware
- canonical/dell r230 firmware
- canonical/dell poweredge t330 firmware
- canonical/dell r330 firmware
- canonical/dell storage nx430 firmware
- canonical/dell nx430 firmware
- canonical/dell storage nx3230 firmware
- canonical/dell nx3230 firmware
- canonical/dell storage nx3330 firmware
- canonical/dell nx3330 firmware
- canonical/dell emc nx440 firmware
- canonical/dell nx440 firmware
- canonical/dell nx3240 firmware
- canonical/dell nx3340 firmware