Dell BIOS Stack-Based Buffer Overflow Vulnerability Allows Arbitrary Code Execution in SMM

Dell BIOS Stack-Based Buffer Overflow Vulnerability Allows Arbitrary Code Execution in SMM

CVE-2022-26860 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM.

Learn more about our Cis Benchmark Audit For Apple Ios.