Dell update for AMD BIOS firmware

1) Buffer overflow

EUVDB-ID: #VU79242

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-20555

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the CpmDisplayFeatureSmm in SMM driver. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Inspiron 7405 2-in-1: before 1.13.0

Inspiron 5505: before 1.12.0

Inspiron 5415: before 1.15.0

Inspiron 5405: before 1.12.0

Dell G5 5505: before 1.16.0

Alienware Aurora Ryzen Edition R14: before 2.13.0

Alienware Aurora R15 AMD: before 1.8.1

Alienware Aurora R10: before 2.5.0

Vostro 5625: before 1.12.1

Vostro 5515: before 1.18.1

Vostro 5415: before 1.18.1

Vostro 3525: before 1.13.0

Vostro 3515: before 1.15.1

Vostro 3425: before 1.13.0

Vostro 3405: before 1.15.1

Vostro 16 5635: before 1.6.1

Vostro 15 3535: before 1.6.0

Vostro 14 3435: before 1.6.0

Inspiron 7415 2-in-1: before 1.18.1

Inspiron 5515: before 1.18.1

Inspiron 5425: before 1.12.1

Inspiron 3515: before 1.15.1

Inspiron 3505: before 1.15.1

Inspiron 16 7635 2-in-1: before 1.6.1

Inspiron 16 5635: before 1.6.1

Inspiron 15 3535: before 1.6.0

Inspiron 15 3525: before 1.13.0

Inspiron 14 7435 2-in-1: before 1.6.1

Inspiron 14 7425 2-in-1: before 1.12.1

Inspiron 14 5435: before 1.6.1

Dell G15 5525: before 1.11.1

Dell G15 5515: before 1.14.0

Alienware m17 R5 AMD: before 1.11.1

Alienware m15 Ryzen Edition R5: before 1.15.0

Alienware m15 R7 AMD: before 1.11.1

CPE2.3

• cpe:2.3:h:dell:inspiron_7405_2-in-1:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_5505:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_5415:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_5405:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:dell_g5_5505:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_aurora_ryzen_edition_r14:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_aurora_r15_amd:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_aurora_r10:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_5625:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_5515:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_5415:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_3525:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_3515:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_3425:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_3405:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_16_5635:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_15_3535:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:vostro_14_3435:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_7415_2-in-1:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_5515:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_5425:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_3515:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_3505:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_16_7635_2-in-1:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_16_5635:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_15_3535:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_15_3525:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_14_7435_2-in-1:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_14_7425_2-in-1:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:inspiron_14_5435:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:dell_g15_5525:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:dell_g15_5515:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_m17_r5_amd:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_m15_ryzen_edition_r5:*:*:*:*:*:*:*:*
• cpe:2.3:h:dell:alienware_m15_r7_amd:*:*:*:*:*:*:*:*

External links

https://www.dell.com/support/kbdoc/nl-nl/000216230/dsa-2023-177-security-update-for-an-amd-bios-vulnerability

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.