DSA-2023-126: Dell Client Platform Security Update for Insyde UEFI BIOS Vulnerabilities

Samenvatting: Dell Client Platform remediation is available for multiple Insyde UEFI BIOS vulnerabilities that could be exploited by malicious users to compromise the affected system.

Dit artikel is van toepassing op Dit artikel is niet van toepassing op Dit artikel is niet gebonden aan een specifiek product. Niet alle productversies worden in dit artikel vermeld.
Bekijk andere hulpbronnen

Impact

High

Gegevens

Third-Party Component CVE(s) More information
Insyde UEFI BIOS CVE-2023-22612 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) or the following advisories for individual scores for each CVE.
INSYDE-SA-2023019This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023021This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023023This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023027This hyperlink is taking you to a website outside of Dell Technologies.
 
CVE-2023-22613
CVE-2023-22615
CVE-2022-24350
Third-Party Component CVE(s) More information
Insyde UEFI BIOS CVE-2023-22612 See NVD (http://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.) or the following advisories for individual scores for each CVE.
INSYDE-SA-2023019This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023021This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023023This hyperlink is taking you to a website outside of Dell Technologies.,
INSYDE-SA-2023027This hyperlink is taking you to a website outside of Dell Technologies.
 
CVE-2023-22613
CVE-2023-22615
CVE-2022-24350
Dell Technologies raadt aan dat alle klanten rekening houden met zowel de basisscore van CVSS als alle relevante tijdelijke en omgevingsscores die gevolgen kunnen hebben voor de mogelijke ernst van de specifieke beveiligingsproblemen.

Getroffen producten en herstel

CVE ID Product BIOS Update Version BIOS Release Date
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m15 R7 AMD 1.9.1 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m15 Ryzen Edition R5 1.13.1 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m17 R5 AMD 1.9.1 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G15 5515 1.12.0 07/06/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G15 5525 1.9.0 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G5 SE 5505 1.16.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 5435 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 7425 2-in-1 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 7435 2-in-1 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 15 3535 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 16 5635 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 16 7635 2-in-1 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 24 5415 All-in-One 1.12.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3505 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3515 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3525 1.11.0 06/16/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613 Inspiron 3585 1.13.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613 Inspiron 3785 1.13.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5405 1.12.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5425 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5485 2.15.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5505 1.12.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5515 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5585 2.15.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 7405 2-in-1 1.13.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 7415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 14 3435 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 15 3535 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3405 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3425 1.11.0 06/12/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3515 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3525 1.11.0 06/12/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5515 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5625 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5635 1.3.0 05/08/2023
CVE ID Product BIOS Update Version BIOS Release Date
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m15 R7 AMD 1.9.1 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m15 Ryzen Edition R5 1.13.1 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Alienware m17 R5 AMD 1.9.1 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G15 5515 1.12.0 07/06/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G15 5525 1.9.0 06/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Dell G5 SE 5505 1.16.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 5435 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 7425 2-in-1 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 14 7435 2-in-1 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 15 3535 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 16 5635 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 16 7635 2-in-1 1.3.0 05/08/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 24 5415 All-in-One 1.12.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3505 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3515 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 3525 1.11.0 06/16/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613 Inspiron 3585 1.13.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613 Inspiron 3785 1.13.0 05/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5405 1.12.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5425 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5485 2.15.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5505 1.12.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5515 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 5585 2.15.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 7405 2-in-1 1.13.0 06/09/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Inspiron 7415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 14 3435 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 15 3535 1.3.0 06/14/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3405 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3425 1.11.0 06/12/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3515 1.13.0 06/13/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 3525 1.11.0 06/12/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5415 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5515 1.16.0 05/11/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5625 1.10.0 7/10/2023
CVE-2022-24350, CVE-2023-22612, CVE-2023-22613, CVE-2023-22615 Vostro 5635 1.3.0 05/08/2023

Revisiegeschiedenis

RevisionDateDescription
1.02023-05-09Initial Release
2.02023-07-11Final Platform Update

Verwante informatie

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Juridische verklaring van afstand

Getroffen producten

Alienware m15 Ryzen Edition R5, Alienware m15 R7 AMD, Alienware m17 R5 AMD, Dell G5 SE 5505, Dell G15 5515 Ryzen Edition, Dell G15 5525, Inspiron 5405, Inspiron 5415, Inspiron 14 5435, Inspiron 14 5485, Inspiron 7405 2-in-1, Inspiron 7415 2-in-1 , Inspiron 14 7425 2-in-1, Inspiron 14 7435 2-in-1, Inspiron 3505, Inspiron 15 3515, Inspiron 15 3525, Inspiron 15 3535, Inspiron 3585, Inspiron 5505, Inspiron 5515, Inspiron 15 5585, Inspiron 16 5635, Inspiron 16 7635 2-in-1, Inspiron 3785, Inspiron 24 5415 All-in-One, Inspiron 5425 (End of Life), Vostro 3405, Vostro 3425, Vostro 14 3435, Vostro 5415, Vostro 15 3515, Vostro 3525, Vostro 15 3535, Vostro 5515, Vostro 5625, Vostro 16 5635 ...
Artikeleigenschappen
Artikelnummer: 000211895
Artikeltype: Dell Security Advisory
Laatst aangepast: 11 jul. 2023
Vind antwoorden op uw vragen via andere Dell gebruikers
Support Services
Controleer of uw apparaat wordt gedekt door Support Services.