Operating System Command Injection Vulnerability in Dell Edge Gateway 5200 (EGW) Versions Before 1.03.10

Operating System Command Injection Vulnerability in Dell Edge Gateway 5200 (EGW) Versions Before 1.03.10

CVE-2022-34383 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Dell Edge Gateway 5200 (EGW) versions before 1.03.10 contain an operating system command injection vulnerability. A local malicious user may potentially exploit this vulnerability by using an SMI to bypass PMC mitigation and gain arbitrary code execution during SMM.

Learn more about our User Device Pen Test.