U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:o:dell:inspiron_14_plus_7420_firmware:-:*:*:*:*:*:*:*
  • CPE Name Search: true
There are 38 matching records.
Displaying matches 21 through 38.
Vuln ID Summary CVSS Severity
CVE-2023-28039

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:10 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28035

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:10 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28033

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28032

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28030

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28029

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-28028

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-25937

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 6:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2023-25936

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: June 23, 2023; 5:15:09 AM -0400 		V4.0:(not available)
 V3.1: 6.7 MEDIUM
V2.0:(not available)
CVE-2022-46752

Dell BIOS contains an Improper Authorization vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

Published: March 08, 2023; 12:15:10 PM -0500 		V4.0:(not available)
 V3.1: 4.6 MEDIUM
V2.0:(not available)
CVE-2022-32482

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Published: February 01, 2023; 1:15:08 AM -0500 		V4.0:(not available)
 V3.1: 5.1 MEDIUM
V2.0:(not available)
CVE-2022-31226

Dell BIOS versions contain a Stack-based Buffer Overflow vulnerability. A local authenticated malicious user could potentially exploit this vulnerability by sending excess data to a function in order to gain arbitrary code execution on the system.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 7.8 HIGH
V2.0:(not available)
CVE-2022-31225

Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 5.1 MEDIUM
V2.0:(not available)
CVE-2022-31224

Dell BIOS versions contain an Improper Protection Against Voltage and Clock Glitches vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by triggering a fault condition in order to change the behavior of the system.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 2.4 LOW
V2.0:(not available)
CVE-2022-31223

Dell BIOS versions contain an Improper Neutralization of Null Byte vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by sending unexpected null bytes in order to read memory on the system.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 2.3 LOW
V2.0:(not available)
CVE-2022-31222

Dell BIOS versions contain a Missing Release of Resource after Effective Lifetime vulnerability. A local authenticated administrator user could potentially exploit this vulnerability by consuming excess memory in order to cause the application to crash.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 4.4 MEDIUM
V2.0:(not available)
CVE-2022-31221

Dell BIOS versions contain an Information Exposure vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order access sensitive state information on the system.

Published: September 12, 2022; 3:15:09 PM -0400 		V4.0:(not available)
 V3.1: 2.3 LOW
V2.0:(not available)
CVE-2022-31220

Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

Published: September 12, 2022; 3:15:08 PM -0400 		V4.0:(not available)
 V3.1: 5.1 MEDIUM
V2.0:(not available)