CVE-2022-29083

6.8

MEDIUM

Dell Improper Authentication BIOS Vulnerability

Description

Prior Dell BIOS versions contain an Improper Authentication vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability by bypassing drive security mechanisms in order to gain access to the system.

INFO

Published Date :

Aug. 9, 2022, 9:15 p.m.

Last Modified :

Aug. 16, 2022, 12:52 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

5.9

Exploitability Score :

0.9

Affected Products

The following products are affected by CVE-2022-29083 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Dell	cpg_bios
2	Dell	chengming_3980_firmware
3	Dell	chengming_3990_firmware
4	Dell	chengming_3991_firmware
5	Dell	g3_3579_firmware
6	Dell	g3_3779_firmware
7	Dell	g5_5000_firmware
8	Dell	g5_5090_firmware
9	Dell	inspiron_3470_firmware
10	Dell	inspiron_3480_firmware
11	Dell	inspiron_3493_firmware
12	Dell	inspiron_3501_firmware
13	Dell	inspiron_3580_firmware
14	Dell	inspiron_3593_firmware
15	Dell	inspiron_3670_firmware
16	Dell	inspiron_3780_firmware
17	Dell	inspiron_3790_firmware
18	Dell	inspiron_3793_firmware
19	Dell	inspiron_3880_firmware
20	Dell	inspiron_3881_firmware
21	Dell	inspiron_5310_firmware
22	Dell	inspiron_5410_firmware
23	Dell	inspiron_5493_firmware
24	Dell	inspiron_5494_firmware
25	Dell	inspiron_5593_firmware
26	Dell	inspiron_5594_firmware
27	Dell	inspiron_7490_firmware
28	Dell	inspiron_7510_firmware
29	Dell	inspiron_7610_firmware
30	Dell	latitude_3120_firmware
31	Dell	latitude_3190_firmware
32	Dell	latitude_3320_firmware
33	Dell	latitude_5310_firmware
34	Dell	latitude_5410_firmware
35	Dell	latitude_5411_firmware
36	Dell	latitude_5491_firmware
37	Dell	latitude_5510_firmware
38	Dell	latitude_5511_firmware
39	Dell	latitude_5591_firmware
40	Dell	latitude_7310_firmware
41	Dell	latitude_7410_firmware
42	Dell	latitude_9410_firmware
43	Dell	latitude_9510_firmware
44	Dell	optiplex_3060_firmware
45	Dell	optiplex_3070_firmware
46	Dell	optiplex_3080_firmware
47	Dell	optiplex_3090_firmware
48	Dell	optiplex_5060_firmware
49	Dell	optiplex_5070_firmware
50	Dell	optiplex_5080_firmware
51	Dell	optiplex_7060_firmware
52	Dell	optiplex_7070_firmware
53	Dell	optiplex_7070_ultra_firmware
54	Dell	optiplex_7071_firmware
55	Dell	optiplex_7080_firmware
56	Dell	optiplex_xe3_firmware
57	Dell	precision_3240_compact_firmware
58	Dell	precision_3430_tower_firmware
59	Dell	precision_3431_tower_firmware
60	Dell	precision_3440_firmware
61	Dell	precision_3530_firmware
62	Dell	precision_3550_firmware
63	Dell	precision_3551_firmware
64	Dell	precision_3630_tower_firmware
65	Dell	precision_3640_tower_firmware
66	Dell	precision_3650_tower_firmware
67	Dell	precision_3930_rack_firmware
68	Dell	precision_7530_firmware
69	Dell	precision_7540_firmware
70	Dell	precision_7730_firmware
71	Dell	precision_7740_firmware
72	Dell	vostro_3070_firmware
73	Dell	vostro_3401_firmware
74	Dell	vostro_3470_firmware
75	Dell	vostro_3480_firmware
76	Dell	vostro_3490_firmware
77	Dell	vostro_3501_firmware
78	Dell	vostro_3580_firmware
79	Dell	vostro_3583_firmware
80	Dell	vostro_3590_firmware
81	Dell	vostro_3670_firmware
82	Dell	vostro_3681_firmware
83	Dell	vostro_3881_firmware
84	Dell	vostro_3888_firmware
85	Dell	vostro_5090_firmware
86	Dell	vostro_5310_firmware
87	Dell	vostro_5410_firmware
88	Dell	vostro_5491_firmware
89	Dell	vostro_5510_firmware
90	Dell	vostro_5591_firmware
91	Dell	vostro_5880_firmware
92	Dell	vostro_7510_firmware
93	Dell	wyse_5070_firmware
94	Dell	wyse_5470_firmware
95	Dell	wyse_5470_all-in-one_firmware
96	Dell	xps_8940_firmware
97	Dell	g5_5587_firmware
98	Dell	g7_7588_firmware
99	Dell	latitude_7210_firmware
100	Dell	optiplex_5260_firmware
101	Dell	optiplex_5270_firmware
102	Dell	optiplex_7460_firmware
103	Dell	optiplex_7470_firmware
104	Dell	optiplex_7760_firmware
105	Dell	optiplex_7770_firmware
106	Dell	precision_7550_firmware
107	Dell	precision_7750_firmware
108	Dell	vostro_15_7580_firmware
109	Dell	inspiron_5510_firmware

: Total Affected Vendor : 1 | Products : 109

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2022-29083.

URL	Resource
https://www.dell.com/support/kbdoc/000201396	Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2022-29083 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2022-29083 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value

Initial Analysis by [email protected]

Aug. 16, 2022

Action	Type	Old Value	New Value
Added	CVSS V3.1		NIST AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Changed	Reference Type	https://www.dell.com/support/kbdoc/000201396 No Types Assigned	https://www.dell.com/support/kbdoc/000201396 Vendor Advisory
Added	CWE		NIST CWE-287
Added	CPE Configuration		AND OR cpe:2.3:o:dell:chengming_3980_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:chengming_3980:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:chengming_3990_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:chengming_3990:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:chengming_3991_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:chengming_3991:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g3_3579_firmware::::::::* versions up to (excluding) 1.21.0 OR cpe:2.3:h:dell:g3_3579:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g3_3779_firmware::::::::* versions up to (excluding) 1.21.0 OR cpe:2.3:h:dell:g3_3779:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g5_5587_firmware::::::::* versions up to (excluding) 1.21.0 OR cpe:2.3:h:dell:g5_5587:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g5_5000_firmware::::::::* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:g5_5000:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g5_5090_firmware::::::::* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:g5_5090:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:g7_7588_firmware::::::::* versions up to (excluding) 1.21.0 OR cpe:2.3:h:dell:g7_7588:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3470_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:inspiron_3470:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3480_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3480:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3493_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3493:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3501_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:inspiron_3501:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3580_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3580:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3593_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3593:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3670_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:inspiron_3670:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3780_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3780:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3790_firmware::::::::* versions up to (excluding) 1.16.0 OR cpe:2.3:h:dell:inspiron_3790:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3793_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_3793:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3880_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:inspiron_3880:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_3881_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:inspiron_3881:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5310_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5410_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5493_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_5493:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5494_firmware::::::::* versions up to (excluding) 1.16.0 OR cpe:2.3:h:dell:inspiron_5494:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5510_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5593_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:inspiron_5593:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_5594_firmware::::::::* versions up to (excluding) 1.16.0 OR cpe:2.3:h:dell:inspiron_5594:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_7490_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:inspiron_7490:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_7510_firmware::::::::* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_7510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:inspiron_7610_firmware::::::::* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_7610:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_3120_firmware::::::::* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:latitude_3120:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_3190_firmware::::::::* versions up to (excluding) 1.21.1 OR cpe:2.3:h:dell:latitude_3190:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_3320_firmware::::::::* versions up to (excluding) 1.8.2 OR cpe:2.3:h:dell:latitude_3320:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5310_firmware::::::::* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:latitude_5310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5410_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:latitude_5410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5411_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:latitude_5411:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5491_firmware::::::::* versions up to (excluding) 1.21.1 OR cpe:2.3:h:dell:latitude_5491:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5510_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:latitude_5510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5511_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:latitude_5511:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_5591_firmware::::::::* versions up to (excluding) 1.21.1 OR cpe:2.3:h:dell:latitude_5591:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_7210_firmware::::::::* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:latitude_7210:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_7310_firmware::::::::* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:latitude_7310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_7410_firmware::::::::* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:latitude_7410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_9410_firmware::::::::* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:latitude_9410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:latitude_9510_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:latitude_9510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_3060_firmware::::::::* versions up to (excluding) 1.20.0 OR cpe:2.3:h:dell:optiplex_3060:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_3070_firmware::::::::* versions up to (excluding) 1.15.0 OR cpe:2.3:h:dell:optiplex_3070:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_3080_firmware::::::::* versions up to (excluding) 2.11.0 OR cpe:2.3:h:dell:optiplex_3080:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_3090_firmware::::::::* versions up to (excluding) 2.4.0 OR cpe:2.3:h:dell:optiplex_3090:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_5060_firmware::::::::* versions up to (excluding) 1.20.0 OR cpe:2.3:h:dell:optiplex_5060:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_5070_firmware::::::::* versions up to (excluding) 1.15.0 OR cpe:2.3:h:dell:optiplex_5070:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_5080_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:optiplex_5080:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_5260_firmware::::::::* versions up to (excluding) 1.20.1 OR cpe:2.3:h:dell:optiplex_5260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_5270_firmware::::::::* versions up to (excluding) 1.15.1 OR cpe:2.3:h:dell:optiplex_5270:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7060_firmware::::::::* versions up to (excluding) 1.20.0 OR cpe:2.3:h:dell:optiplex_7060:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7070_firmware::::::::* versions up to (excluding) 1.15.0 OR cpe:2.3:h:dell:optiplex_7070:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7070_ultra_firmware::::::::* versions up to (excluding) 1.13.2 OR cpe:2.3:h:dell:optiplex_7070_ultra:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7071_firmware::::::::* versions up to (excluding) 1.14.1 OR cpe:2.3:h:dell:optiplex_7071:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7080_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:optiplex_7080:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7460_firmware::::::::* versions up to (excluding) 1.20.1 OR cpe:2.3:h:dell:optiplex_7460:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7470_firmware::::::::* versions up to (excluding) 1.15.1 OR cpe:2.3:h:dell:optiplex_7470:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7760_firmware::::::::* versions up to (excluding) 1.20.1 OR cpe:2.3:h:dell:optiplex_7760:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_7770_firmware::::::::* versions up to (excluding) 1.15.1 OR cpe:2.3:h:dell:optiplex_7770:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:optiplex_xe3_firmware::::::::* versions up to (excluding) 1.20.0 OR cpe:2.3:h:dell:optiplex_xe3:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3240_compact_firmware::::::::* versions up to (excluding) 1.12.0 OR cpe:2.3:h:dell:precision_3240_compact:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3430_tower_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:precision_3430_tower:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3431_tower_firmware::::::::* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:precision_3431_tower:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3440_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:precision_3440:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3530_firmware::::::::* versions up to (excluding) 1.21.1 OR cpe:2.3:h:dell:precision_3530:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3550_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:precision_3550:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3551_firmware::::::::* versions up to (excluding) 1.8.1 OR cpe:2.3:h:dell:precision_3551:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3630_tower_firmware::::::::* versions up to (excluding) 2.14.1 OR cpe:2.3:h:dell:precision_3630_tower:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3640_tower_firmware::::::::* versions up to (excluding) 1.15.0 OR cpe:2.3:h:dell:precision_3640_tower:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3650_tower_firmware::::::::* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:precision_3650_tower:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_3930_rack_firmware::::::::* versions up to (excluding) 2.19.2 OR cpe:2.3:h:dell:precision_3930_rack:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7530_firmware::::::::* versions up to (excluding) 1.22.1 OR cpe:2.3:h:dell:precision_7530:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7540_firmware::::::::* versions up to (excluding) 1.20.2 OR cpe:2.3:h:dell:precision_7540:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7550_firmware::::::::* versions up to (excluding) 1.10.1 OR cpe:2.3:h:dell:precision_7550:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7730_firmware::::::::* versions up to (excluding) 1.22.1 OR cpe:2.3:h:dell:precision_7730:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7740_firmware::::::::* versions up to (excluding) 1.20.2 OR cpe:2.3:h:dell:precision_7740:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:precision_7750_firmware::::::::* versions up to (excluding) 1.10.1 OR cpe:2.3:h:dell:precision_7750:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_15_7580_firmware::::::::* versions up to (excluding) 1.21.0 OR cpe:2.3:h:dell:vostro_15_7580:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3070_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:vostro_3070:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3401_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:vostro_3401:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3470_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:vostro_3470:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3480_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:vostro_3480:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3490_firmware::::::::* versions up to (excluding) 1.16.0 OR cpe:2.3:h:dell:vostro_3490:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3501_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:vostro_3501:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3580_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:vostro_3580:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3583_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:vostro_3583:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3590_firmware::::::::* versions up to (excluding) 1.16.0 OR cpe:2.3:h:dell:vostro_3590:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3670_firmware::::::::* versions up to (excluding) 2.23.0 OR cpe:2.3:h:dell:vostro_3670:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3681_firmware::::::::* versions up to (excluding) 2.11.0 OR cpe:2.3:h:dell:vostro_3681:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3881_firmware::::::::* versions up to (excluding) 2.11.0 OR cpe:2.3:h:dell:vostro_3881:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_3888_firmware::::::::* versions up to (excluding) 2.11.0 OR cpe:2.3:h:dell:vostro_3888:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5090_firmware::::::::* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:vostro_5090:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5310_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5310:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5410_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5410:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5491_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:vostro_5491:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5510_firmware::::::::* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5591_firmware::::::::* versions up to (excluding) 1.19.0 OR cpe:2.3:h:dell:vostro_5591:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_5880_firmware::::::::* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:vostro_5880:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:vostro_7510_firmware::::::::* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:vostro_7510:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:wyse_5070_firmware::::::::* versions up to (excluding) 1.17.0 OR cpe:2.3:h:dell:wyse_5070:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:wyse_5470_firmware::::::::* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:wyse_5470:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:wyse_5470_all-in-one_firmware::::::::* versions up to (excluding) 1.15.0 OR cpe:2.3:h:dell:wyse_5470_all-in-one:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:dell:xps_8940_firmware::::::::* versions up to (excluding) 2.6.0 OR cpe:2.3:h:dell:xps_8940:-:::::::*

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2022-29083 is associated with the following CWEs:

CWE-287: Improper Authentication

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2022-29083 weaknesses.

CAPEC-22: Exploiting Trust in Client Exploiting Trust in Client CAPEC-57: Utilizing REST's Trust in the System Resource to Obtain Sensitive Data Utilizing REST's Trust in the System Resource to Obtain Sensitive Data CAPEC-94: Adversary in the Middle (AiTM) Adversary in the Middle (AiTM) CAPEC-114: Authentication Abuse Authentication Abuse CAPEC-115: Authentication Bypass Authentication Bypass CAPEC-151: Identity Spoofing Identity Spoofing CAPEC-194: Fake the Source of Data Fake the Source of Data CAPEC-593: Session Hijacking Session Hijacking CAPEC-633: Token Impersonation Token Impersonation CAPEC-650: Upload a Web Shell to a Web Server Upload a Web Shell to a Web Server

CVE-2022-29083

Dell Improper Authentication BIOS Vulnerability

Description

INFO

Aug. 9, 2022, 9:15 p.m.

Aug. 16, 2022, 12:52 p.m.

[email protected]

No

5.9

0.9

Affected Products

References to Advisories, Solutions, and Tools

CVE Modified by [email protected]

Initial Analysis by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.06 }} 0.00%

0.23507

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable