Rewterz Threat Alert – MuddyWater APT – Active IOCs
March 15, 2022Rewterz Threat Advisory – CVE-2022-26779 – Apache CloudStack Vulnerability
March 16, 2022Rewterz Threat Alert – MuddyWater APT – Active IOCs
March 15, 2022Rewterz Threat Advisory – CVE-2022-26779 – Apache CloudStack Vulnerability
March 16, 2022Severity
High
Analysis Summary
CVE-2022-24420; CVE-2022-24419; CVE-2022-24416; CVE-2022-24415
Dell BIOS could allow a local authenticated attacker to execute arbitrary code on the system, caused by improper input validation. By using an SMI, an attacker could exploit this vulnerability to execute arbitrary code on the system during SMM.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-24420
Affected Vendors
Dell
Affected Products
- Dell Alienware 13 R3
- Dell Alienware 15 R3
- Dell Alienware 15 R4
- Dell Alienware 17 R4
Remediation
Refer to Dell DSA Identifier for the patch, upgrade, or suggested workaround information.