Multiple vulnerabilities in Dell PowerEdge T40 Mini Tower Server

Published: 2023-08-22

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2022-36392 CVE-2022-29871
CWE-ID	CWE-20 CWE-284
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	PowerEdge T40 Hardware solutions / Firmware
Vendor	Dell

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU79562

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-36392

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can send specially crafted traffic to the system and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

PowerEdge T40: before 1.12.0

CPE2.3

cpe:2.3:h:dell:t40:*:*:*:*:*:*:*:*

External links

https://www.dell.com/support/kbdoc/nl-nl/000216544/dsa-2023-295-security-update-for-dell-poweredge-t40-mini-tower-server-for-intel-august-2023-security-advisories-2023-3-ipu

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Improper access control

EUVDB-ID: #VU79564

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29871

CWE-ID: CWE-284 - Improper Access Control

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper access restrictions. A local user can execute arbitrary code with elevated privileges.

Mitigation

Install update from vendor's website.

Vulnerable software versions

PowerEdge T40: before 1.12.0

CPE2.3

cpe:2.3:h:dell:t40:*:*:*:*:*:*:*:*

External links

https://www.dell.com/support/kbdoc/nl-nl/000216544/dsa-2023-295-security-update-for-dell-poweredge-t40-mini-tower-server-for-intel-august-2023-security-advisories-2023-3-ipu

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.