CVE-2021-21522
Summary
| CVE | CVE-2021-21522 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-09-28 20:15:00 UTC |
| Updated | 2023-06-30 17:51:00 UTC |
| Description | Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Dell | Latitude 5285 2-in-1 | All | All | All | All |
| Operating System | Dell | Latitude 5285 2-in-1 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 5289 2-in-1 | All | All | All | All |
| Operating System | Dell | Latitude 5289 2-in-1 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 5290 2-in-1 | All | All | All | All |
| Operating System | Dell | Latitude 5290 2-in-1 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 5310 2-in-1 | All | All | All | All |
| Operating System | Dell | Latitude 5310 2-in-1 Firmware | 1.7.0 | All | All | All |
| Hardware | Dell | Latitude 7210 2-in-1 | - | All | All | All |
| Operating System | Dell | Latitude 7210 2-in-1 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7212 Rugged Extreme Tablet | - | All | All | All |
| Operating System | Dell | Latitude 7212 Rugged Extreme Tablet Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7212 Rugged Extreme Tablet Firmware | 1.33.0 | All | All | All |
| Hardware | Dell | Latitude 7280 | - | All | All | All |
| Operating System | Dell | Latitude 7280 Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7280 Firmware | 1.21.1 | All | All | All |
| Hardware | Dell | Latitude 7285 | - | All | All | All |
| Operating System | Dell | Latitude 7285 Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7285 Firmware | 1.11.0 | All | All | All |
| Hardware | Dell | Latitude 7290 | - | All | All | All |
| Operating System | Dell | Latitude 7290 Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7290 Firmware | 1.20.0 | All | All | All |
| Hardware | Dell | Latitude 7310 | - | All | All | All |
| Operating System | Dell | Latitude 7310 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7370 | - | All | All | All |
| Operating System | Dell | Latitude 7370 Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7370 Firmware | 1.24.3 | All | All | All |
| Hardware | Dell | Latitude 7380 | - | All | All | All |
| Operating System | Dell | Latitude 7380 Firmware | 1.21.1 | All | All | All |
| Hardware | Dell | Latitude 7389 | - | All | All | All |
| Operating System | Dell | Latitude 7389 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7390 | - | All | All | All |
| Hardware | Dell | Latitude 7390 2-in-1 | - | All | All | All |
| Operating System | Dell | Latitude 7390 2-in-1 Firmware | All | All | All | All |
| Operating System | Dell | Latitude 7390 Firmware | 1.20.0 | All | All | All |
| Hardware | Dell | Latitude 7410 | - | All | All | All |
| Operating System | Dell | Latitude 7410 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7420 | - | All | All | All |
| Operating System | Dell | Latitude 7420 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7480 | - | All | All | All |
| Operating System | Dell | Latitude 7480 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 7490 | - | All | All | All |
| Operating System | Dell | Latitude 7490 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 9410 | - | All | All | All |
| Operating System | Dell | Latitude 9410 Firmware | All | All | All | All |
| Hardware | Dell | Latitude 9510 | - | All | All | All |
| Operating System | Dell | Latitude 9510 Firmware | All | All | All | All |
| Hardware | Dell | Precision 3640 Tower | - | All | All | All |
| Operating System | Dell | Precision 3640 Tower Firmware | All | All | All | All |
| Hardware | Dell | Precision 5510 | - | All | All | All |
| Operating System | Dell | Precision 5510 Firmware | All | All | All | All |
| Hardware | Dell | Precision 5520 | - | All | All | All |
| Operating System | Dell | Precision 5520 Firmware | All | All | All | All |
| Hardware | Dell | Precision 5530 2-in-1 | - | All | All | All |
| Operating System | Dell | Precision 5530 2-in-1 Firmware | All | All | All | All |
| Hardware | Dell | Xps 13 9360 | - | All | All | All |
| Operating System | Dell | Xps 13 9360 Firmware | All | All | All | All |
| Hardware | Dell | Xps 13 9370 | - | All | All | All |
| Operating System | Dell | Xps 13 9370 Firmware | All | All | All | All |
| Hardware | Dell | Xps 15 9575 2-in-1 | - | All | All | All |
| Operating System | Dell | Xps 15 9575 2-in-1 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Access Denied | MISC | www.dell.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.