{"containers":{"cna":{"affected":[{"product":"CPG BIOS","vendor":"Dell","versions":[{"lessThan":"9-12","status":"affected","version":"unspecified","versionType":"custom"}]}],"datePublic":"2022-07-13T00:00:00.000Z","descriptions":[{"lang":"en","value":"Prior Dell BIOS versions contain an Improper Authentication vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability by bypassing drive security mechanisms in order to gain access to the system."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"PHYSICAL","availabilityImpact":"HIGH","baseScore":6.8,"baseSeverity":"MEDIUM","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-287","description":"CWE-287: Improper Authentication","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-08-09T20:15:15.000Z","orgId":"c550e75a-17ff-4988-97f0-544cde3820fe","shortName":"dell"},"references":[{"tags":["x_refsource_MISC"],"url":"https://www.dell.com/support/kbdoc/000201396"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"secure@dell.com","DATE_PUBLIC":"2022-07-13","ID":"CVE-2022-29083","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"CPG BIOS","version":{"version_data":[{"version_affected":"<","version_value":"9-12"}]}}]},"vendor_name":"Dell"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Prior Dell BIOS versions contain an Improper Authentication vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability by bypassing drive security mechanisms in order to gain access to the system."}]},"impact":{"cvss":{"baseScore":6.8,"baseSeverity":"Medium","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-287: Improper Authentication"}]}]},"references":{"reference_data":[{"name":"https://www.dell.com/support/kbdoc/000201396","refsource":"MISC","url":"https://www.dell.com/support/kbdoc/000201396"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T06:10:59.032Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.dell.com/support/kbdoc/000201396"}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-04-14T20:23:06.849692Z","id":"CVE-2022-29083","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-04-14T20:23:14.520Z"}}]},"cveMetadata":{"assignerOrgId":"c550e75a-17ff-4988-97f0-544cde3820fe","assignerShortName":"dell","cveId":"CVE-2022-29083","datePublished":"2022-08-09T20:15:15.536Z","dateReserved":"2022-04-12T00:00:00.000Z","dateUpdated":"2026-04-14T20:23:14.520Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"}