Vulnerabilities > CVE-2022-31225 - Unchecked Return Value vulnerability in Dell products

CVSS 5.1 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

HIGH

local

low complexity

dell

CWE-252

NVD

Published: 2022-09-12

Updated: 2022-09-15

Summary

Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

Vulnerable Configurations

Part	Description	Count
OS	Dell Dell Chengming 3900 Firmware - Dell Inspiron 14 Plus 7420 Firmware - Dell Inspiron 16 Plus 7620 Firmware - Dell Inspiron 3910 Firmware - Dell Inspiron 5320 Firmware - Dell Inspiron 5420 Firmware - Dell Inspiron 5620 Firmware - Dell Inspiron 7420 Firmware - Dell Inspiron 7620 Firmware - Dell Optiplex 3000 Firmware - Dell Optiplex 3000 Thin Client Firmware - Dell Optiplex 5000 Firmware - Dell Optiplex 5400 Firmware - Dell Optiplex 7000 Firmware - Dell Optiplex 7000 OEM Firmware * Dell Optiplex 7400 Firmware - Dell Precision 3460 Small Form Factor Firmware - Dell Precision 3660 Tower Firmware * Dell Precision 5770 Firmware - Dell Vostro 3710 Firmware - Dell Vostro 3910 Firmware - Dell Vostro 5320 Firmware - Dell Vostro 5620 Firmware - Dell Vostro 7620 Firmware - Dell XPS 17 9720 Firmware -	25
Hardware	Dell Dell Chengming 3900 - Dell Inspiron 14 Plus 7420 - Dell Inspiron 16 Plus 7620 - Dell Inspiron 3910 - Dell Inspiron 5320 - Dell Inspiron 5420 - Dell Inspiron 5620 - Dell Inspiron 7420 - Dell Inspiron 7620 - Dell Optiplex 3000 - Dell Optiplex 3000 Thin Client - Dell Optiplex 5000 - Dell Optiplex 5400 - Dell Optiplex 7000 - Dell Optiplex 7000 OEM - Dell Optiplex 7400 - Dell Precision 3460 Small Form Factor - Dell Precision 3660 Tower - Dell Precision 5770 - Dell Vostro 3710 - Dell Vostro 3910 - Dell Vostro 5320 - Dell Vostro 5620 - Dell Vostro 7620 - Dell XPS 17 9720 -	25

Common Weakness Enumeration (CWE)

CWE-252 - Unchecked Return Value

References

https://www.dell.com/support/kbdoc/000202196