CVE-2022-32491

MEDIUM

Dell Alienware Area 51m R1 Firmware < 1.21.0 - Memory Corruption

Title source: rule

Description

Dell Client BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.

References (1)

Core 1

Core References

Vendor Advisory

https://www.dell.com/support/kbdoc/000203758

Scores

CVSS v3 4.1

EPSS 0.0004

EPSS Percentile 12.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119 CWE-120

Status published

Products (50)

dell/alienware_area_51m_r1_firmware < 1.21.0

dell/alienware_area_51m_r2_firmware < 1.18.0

dell/alienware_aurora_r10_firmware < 2.3.1

dell/alienware_aurora_r11_firmware < 1.0.16

dell/alienware_aurora_r12_firmware < 1.1.16

dell/alienware_aurora_r13_firmware < 1.5.0

dell/alienware_aurora_r8_firmware < 1.0.23

dell/alienware_aurora_r9_firmware < 1.0.20

dell/alienware_m15_r1_firmware < 2.14.0

dell/alienware_m15_r2_firmware < 1.17.0

... and 40 more

Published Oct 12, 2022

Tracked Since Feb 18, 2026