Improper SMM Communication Buffer Verification in Dell PowerEdge and Precision BIOS
CVE-2022-34421
7.5HIGH
What is CVE-2022-34421?
Dell PowerEdge and Precision BIOS suffer from a vulnerability related to improper communication buffer verification within the System Management Mode (SMM). This flaw can be exploited by a local user with high privileges, enabling them to execute arbitrary code or trigger a denial of service. As a result, it poses significant security risks for systems relying on these BIOS versions, making it critical for users to ensure they keep their systems updated and apply relevant security patches.
Affected Version(s)
PowerEdge Platform 14G,15G