Vulnerabilities > CVE-2021-21574 - Out-of-bounds Write vulnerability in Dell products

047910
CVSS 7.5 - HIGH
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
high complexity
dell
CWE-787

Summary

Dell BIOSConnect feature contains a buffer overflow vulnerability. An authenticated malicious admin user with local access to the system may potentially exploit this vulnerability to run arbitrary code and bypass UEFI restrictions.

Vulnerable Configurations

Part Description Count
OS
Dell
131
Hardware
Dell
128

Common Weakness Enumeration (CWE)