Dell BIOS Input Validation Vulnerability: Bypassing SMM Security Controls

CVE-2022-26864 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Prior Dell BIOS versions contain an Input Validation vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability by sending malicious input to an SMI in order to bypass security controls in SMM.

Learn more about our Cis Benchmark Audit For Apple Ios.