CWE-1038

2 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-1038page 1 of 1

CVE-2022-26861HIGHCVSS 7.9EG 7.8
2022-09-06
Dell BIOS versions contain an Insecure Automated Optimization vulnerability. A local authenticated malicious user could exploit this vulnerability by sending malicious input via SMI to obtain arbitrary code execution during SMM.
CVE-2022-31220LOWCVSS 3.0EG 5.1
2022-09-12
Dell BIOS versions contain an Unchecked Return Value vulnerability. A local authenticated administrator user could potentially exploit this vulnerability in order to change the state of the system or cause unexpected failures.

Map vulnerabilities like CWE-1038 to your infrastructure

EchelonGraph correlates every CVE — across CWE-1038 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →