Dell BIOS Insecure Automated Optimization Vulnerability Allows Arbitrary Code Execution

Dell BIOS Insecure Automated Optimization Vulnerability Allows Arbitrary Code Execution

CVE-2022-26861 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.

Learn more about our Cis Benchmark Audit For Apple Ios.