CVE-2022-46752
MEDIUMDell Inspiron and Latitude Firmware - Unauthenticated Denial of Service via Physical Access
Title source: llmDescription
Dell BIOS contains an Improper Authorization vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://www.dell.com/support/kbdoc/en-us/000207928/dsa-2023-011-dell-client-platform-security-update-for-a-bios-vulnerability
Scores
CVSS v3
4.6
EPSS
0.0011
EPSS Percentile
29.0%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-285
Status
published
Products (50)
dell/inspiron_14_plus_7420_firmware
< 1.8.0
dell/inspiron_14_plus_7620_firmware
< 1.8.0
dell/inspiron_3511_firmware
< 1.19.0
dell/inspiron_3520_firmware
< 1.9.0
dell/inspiron_5310_firmware
< 2.17.0
dell/inspiron_5320_firmware
< 1.7.0
dell/inspiron_5410_firmware
< 2.16.0
dell/inspiron_5420_firmware
< 1.10.0
dell/inspiron_5510_firmware
< 2.16.0
dell/inspiron_5620_firmware
< 1.10.0
... and 40 more
Published
Mar 08, 2023
Tracked Since
Feb 18, 2026