CVE-2021-36283

Q: What is the severity of CVE-2021-36283?

CVE-2021-36283 has a CVSS score of 7.5 (HIGH). Dell BIOS contains an improper input validation vulnerability that allows a local authenticated attacker to execute arbitrary code in SMRAM via System Management Interrupt (SMI). This affects Dell systems with vulnerable BIOS versions, requiring physical or administrative access to exploit.

7.5 HIGH

📋 TL;DR

Dell BIOS contains an improper input validation vulnerability that allows a local authenticated attacker to execute arbitrary code in SMRAM via System Management Interrupt (SMI). This affects Dell systems with vulnerable BIOS versions, requiring physical or administrative access to exploit.

💻 Affected Systems

Products:

Dell client platforms (laptops, desktops, workstations)

Versions: Various BIOS versions prior to Dell's security updates in 2021

Operating Systems: All operating systems running on affected Dell hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Specific affected models and BIOS versions listed in Dell advisory 000191495

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with persistent firmware-level malware that survives OS reinstallation and disk replacement.

🟠

Likely Case

Local privilege escalation to gain kernel-level access and bypass security controls.

🟢

If Mitigated

Limited impact if BIOS is patched and physical access controls prevent local exploitation.

🌐 Internet-Facing: LOW - Requires local authenticated access, not remotely exploitable.

🏢 Internal Only: HIGH - Malicious insiders or compromised accounts with local access can exploit this.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local authenticated access and SMI programming knowledge

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: BIOS updates released by Dell in 2021

Vendor Advisory: https://www.dell.com/support/kbdoc/000191495/

Restart Required: Yes

Instructions:

1. Identify Dell model and current BIOS version. 2. Download appropriate BIOS update from Dell support site. 3. Run BIOS update utility. 4. Restart system to complete installation.

🔧 Temporary Workarounds

Restrict physical access

all

Prevent unauthorized physical access to systems

Limit administrative privileges

all

Reduce number of users with local admin rights

🧯 If You Can't Patch

Implement strict physical security controls and access monitoring
Segment vulnerable systems and limit their access to critical resources

🔍 How to Verify

Check if Vulnerable:

Check BIOS version against Dell's advisory 000191495 for affected models and versions

Check Version:

Windows: wmic bios get smbiosbiosversion | Linux: sudo dmidecode -s bios-version

Verify Fix Applied:

Verify BIOS version has been updated to patched version listed in Dell advisory

📡 Detection & Monitoring

Log Indicators:

BIOS/UEFI firmware modification events
Unexpected SMI handler execution

Network Indicators:

None - local exploitation only

SIEM Query:

Event ID 12 from Microsoft-Windows-Kernel-Boot for BIOS/UEFI changes

📊 Metadata

CVE ID: CVE-2021-36283

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CWE: CWE-20

Published: September 28, 2021

Last Updated: November 21, 2024

🔗 References

https://www.dell.com/support/kbdoc/000191495/ Patch,Vendor Advisory
https://www.dell.com/support/kbdoc/000191495/ Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Chengming 3990 Firmware by Dell

Chengming 3991 Firmware by Dell

G3 15 3500 Firmware by Dell

G3 15 3590 Firmware by Dell

G3 15 5500 Firmware by Dell

Inspiron 3493 Firmware by Dell

Inspiron 3501 Firmware by Dell

Inspiron 3593 Firmware by Dell

Inspiron 3793 Firmware by Dell

Inspiron 3880 Firmware by Dell

Inspiron 3881 Firmware by Dell

Inspiron 5400 2 In 1 Firmware by Dell

Inspiron 5490 Firmware by Dell

Inspiron 5493 Firmware by Dell

Inspiron 5498 Firmware by Dell

Inspiron 5590 Firmware by Dell

Inspiron 5593 Firmware by Dell

Inspiron 5598 Firmware by Dell

Inspiron 7391 2 In 1 Firmware by Dell

Inspiron 7500 2 In 1 Silver Firmware by Dell

Inspiron 7500 Firmware by Dell

Inspiron 7501 Firmware by Dell

Inspiron 7590 Firmware by Dell

Inspiron 7591 Firmware by Dell

Latitude 3310 2 In 1 Firmware by Dell

Latitude 3310 Firmware by Dell

Latitude 5300 2 In 1 Firmware by Dell

Latitude 5300 Firmware by Dell

Latitude 5310 2 In 1 Firmware by Dell

Latitude 5310 Firmware by Dell

Latitude 5400 Firmware by Dell

Latitude 5401 Firmware by Dell

Latitude 5410 Firmware by Dell

Latitude 5411 Firmware by Dell

Latitude 5500 Firmware by Dell

Latitude 5511 Firmware by Dell

Latitude 7200 2 In 1 Firmware by Dell

Latitude 7210 2 In 1 Firmware by Dell

Latitude 7220ex Rugged Extreme Tablet Firmware by Dell

Latitude 7300 Firmware by Dell

Latitude 7310 Firmware by Dell

Latitude 7400 2 In 1 Firmware by Dell

Latitude 7400 Firmware by Dell

Latitude 7410 Firmware by Dell

Latitude 9410 Firmware by Dell

Latitude 9510 Firmware by Dell

Optiplex 3080 Firmware by Dell

Optiplex 3280 Aio Firmware by Dell

Optiplex 5080 Firmware by Dell

Optiplex 5480 Aio Firmware by Dell

Optiplex 7080 Firmware by Dell

Optiplex 7480 Aio Firmware by Dell

Optiplex 7780 Aio Firmware by Dell

Precision 3440 Firmware by Dell

Precision 3540 Firmware by Dell

Precision 3541 Firmware by Dell

Precision 3550 Firmware by Dell

Precision 3551 Firmware by Dell

Precision 3640 Tower Firmware by Dell

Precision 5540 Firmware by Dell

Precision 5550 Firmware by Dell

Precision 5750 Firmware by Dell

Precision 7540 Firmware by Dell

Precision 7550 Firmware by Dell

Precision 7740 Firmware by Dell

Precision 7750 Firmware by Dell

Vostro 3401 Firmware by Dell

Vostro 3491 Firmware by Dell

Vostro 3501 Firmware by Dell

Vostro 3591 Firmware by Dell

Vostro 3681 Firmware by Dell

Vostro 3881 Firmware by Dell

Vostro 3888 Firmware by Dell

Vostro 5490 Firmware by Dell

Vostro 5590 Firmware by Dell

Vostro 7500 Firmware by Dell

Vostro 7590 Firmware by Dell