Vulnerabilities > CVE-2021-21572 - Out-of-bounds Write vulnerability in Dell products

047910
CVSS 6.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE

Summary

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

Vulnerable Configurations

Part Description Count
OS
Dell
129
Hardware
Dell
128

Common Weakness Enumeration (CWE)