Dell BIOS SMM Vulnerabilities Audit

Find Devices Vulnerable to the Dell BIOS SMM Vulnerabilities

Dell disclosed information on 5 vulnerabilities affecting multiple Dell models. CVE-2022-24415, CVE-2022-24416, CVE-2022-24419, CVE-2022-24420, and CVE-2022-24421 all have a CVSS base score of 8.2 and are all caused by an issue in the System Management Mode (SMM).

Dell released new BIOS versions for all affected devices, the report below will provide a list of all Dell models which are affected along with their BIOS details and a listing of which BIOS version should be installed to fix the vulnerabilities.

Dell BIOS SMM Vulnerabilities Audit Query

Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tblAssets.Username,
tblAssets.Userdomain,
Coalesce(tsysOS.Image, tsysAssetTypes.AssetTypeIcon10) As icon,
tblAssets.IPAddress,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tsysOS.OSname As OS,
tblAssets.Version,
tblBIOS.Caption,
tblBIOS.SMBIOSBIOSVersion,
tblBIOS.SMBIOSMajorVersion,
tblBIOS.SMBIOSMinorVersion,
tblBIOS.ReleaseDate,
Case
When tblAssetCustom.Model Like '%Alienware 13 R3%' Then '1.16.1'
When tblAssetCustom.Model Like '%Alienware 15 R3%' Then '1.16.1'
When tblAssetCustom.Model Like '%Alienware 15 R4%' Then '1.17.0'
When tblAssetCustom.Model Like '%Alienware 17 R4%' Then '1.16.1'
When tblAssetCustom.Model Like '%Alienware 17 R5%' Then '1.17.0'
When tblAssetCustom.Model Like '%Alienware Area 51m R1%' Then '1.18.0'
When tblAssetCustom.Model Like '%Alienware Area 51m R2%' Then '1.13.0'
When tblAssetCustom.Model Like '%Alienware Aurora R8%' Then '1.0.20'
When tblAssetCustom.Model Like '%Alienware m15 R2%' Then '1.12.0'
When tblAssetCustom.Model Like '%Alienware m15 R3%' Then '1.14.0'
When tblAssetCustom.Model Like '%Alienware m15 R4%' Then '1.8.0'
When tblAssetCustom.Model Like '%Alienware m17 R2%' Then '1.12.0'
When tblAssetCustom.Model Like '%Alienware m17 R3%' Then '1.14.0'
When tblAssetCustom.Model Like '%Alienware m17 R4%' Then '1.8.0'
When tblAssetCustom.Model Like '%Alienware x15 R1%' Then '1.7.0'
When tblAssetCustom.Model Like '%Alienware x17 R1%' Then '1.7.0'
When tblAssetCustom.Model Like '%Dell Edge Gateway 300_%' Then '1.7.0'
When tblAssetCustom.Model Like '%Dell Edge Gateway 5000%' Then '1.17.0'
When tblAssetCustom.Model Like '%Dell Edge Gateway 5100%' Then '1.17.0'
When tblAssetCustom.Model Like '%Dell Embedded Box PC 3000%' Then '1.13.0'
When tblAssetCustom.Model Like '%Dell Embedded Box PC 5000%' Then '1.14.0'
When tblAssetCustom.Model Like '%Inspiron 14 3473%' Then '1.14.0'
When tblAssetCustom.Model Like '%Inspiron 15 3573%' Then '1.14.0'
When tblAssetCustom.Model Like '%Inspiron 15 5566%' Then '1.18.0'
When tblAssetCustom.Model Like '%Inspiron 3277%' Then '1.19.0'
When tblAssetCustom.Model Like '%Inspiron 3465%' Then '1.12.0'
When tblAssetCustom.Model Like '%Inspiron 3477%' Then '1.19.0'
When tblAssetCustom.Model Like '%Inspiron 3482%' Then '1.13.0'
When tblAssetCustom.Model Like '%Inspiron 3502%' Then '1.7.0'
When tblAssetCustom.Model Like '%Inspiron 3510%' Then '1.6.0'
When tblAssetCustom.Model Like '%Inspiron 3565%' Then '1.12.0'
When tblAssetCustom.Model Like '%Inspiron 3582%' Then '1.13.0'
When tblAssetCustom.Model Like '%Inspiron 3782%' Then '1.13.0'
When tblAssetCustom.Model Like '%Latitude 3379%' Then '1.0.34'
When tblAssetCustom.Model Like '%Vostro 14 5468%' Then '1.19.0'
When tblAssetCustom.Model Like '%Vostro 15 5568%' Then '1.19.0'
When tblAssetCustom.Model Like '%Vostro 3267%' Then '1.20.0'
When tblAssetCustom.Model Like '%Vostro 3268%' Then '1.20.0'
When tblAssetCustom.Model Like '%Vostro 3572%' Then '1.14.0'
When tblAssetCustom.Model Like '%Vostro 3582%' Then '1.13.0'
When tblAssetCustom.Model Like '%Vostro 3660%' Then '1.20.0'
When tblAssetCustom.Model Like '%Vostro 3667%' Then '1.20.0'
When tblAssetCustom.Model Like '%Vostro 3668%' Then '1.20.0'
When tblAssetCustom.Model Like '%Vostro 3669%' Then '1.20.0'
When tblAssetCustom.Model Like '%Wyse 7040%' Then '1.15.0'
When tblAssetCustom.Model Like '%XPS 8930%' Then '1.1.21'
End As FixedVersion,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen,
tblAssets.Lasttried
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblBIOS On tblBIOS.AssetID = tblAssets.AssetID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join tsysOS On tsysOS.OScode = tblAssets.OScode
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
Max(tblErrors.Teller) As ErrorID
From tblErrors
Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
ScanningError.ID
Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
tblErrors.ErrorType
Where (tblAssetCustom.Manufacturer Like '%Dell%' Or 
tblAssetCustom.Manufacturer Like '%Alienware%') And
(tblAssetCustom.Model Like '%Alienware 13 R3%' Or
tblAssetCustom.Model Like '%Alienware 15 R3%' Or
tblAssetCustom.Model Like '%Alienware 15 R4%' Or
tblAssetCustom.Model Like '%Alienware 17 R4%' Or
tblAssetCustom.Model Like '%Alienware 17 R5%' Or
tblAssetCustom.Model Like '%Alienware Area 51m R1%' Or
tblAssetCustom.Model Like '%Alienware Area 51m R2%' Or
tblAssetCustom.Model Like '%Alienware Aurora R8%' Or
tblAssetCustom.Model Like '%Alienware m15 R2%' Or
tblAssetCustom.Model Like '%Alienware m15 R3%' Or
tblAssetCustom.Model Like '%Alienware m15 R4%' Or
tblAssetCustom.Model Like '%Alienware m17 R2%' Or
tblAssetCustom.Model Like '%Alienware m17 R3%' Or
tblAssetCustom.Model Like '%Alienware m17 R4%' Or
tblAssetCustom.Model Like '%Alienware x15 R1%' Or
tblAssetCustom.Model Like '%Alienware x17 R1%' Or
tblAssetCustom.Model Like '%Dell Edge Gateway 300_%' Or
tblAssetCustom.Model Like '%Dell Edge Gateway 5000%' Or
tblAssetCustom.Model Like '%Dell Edge Gateway 5100%' Or
tblAssetCustom.Model Like '%Dell Embedded Box PC 3000%' Or
tblAssetCustom.Model Like '%Dell Embedded Box PC 5000%' Or
tblAssetCustom.Model Like '%Inspiron 14 3473%' Or
tblAssetCustom.Model Like '%Inspiron 15 3573%' Or
tblAssetCustom.Model Like '%Inspiron 15 5566%' Or
tblAssetCustom.Model Like '%Inspiron 3277%' Or
tblAssetCustom.Model Like '%Inspiron 3465%' Or
tblAssetCustom.Model Like '%Inspiron 3477%' Or
tblAssetCustom.Model Like '%Inspiron 3482%' Or
tblAssetCustom.Model Like '%Inspiron 3502%' Or
tblAssetCustom.Model Like '%Inspiron 3510%' Or
tblAssetCustom.Model Like '%Inspiron 3565%' Or
tblAssetCustom.Model Like '%Inspiron 3582%' Or
tblAssetCustom.Model Like '%Inspiron 3782%' Or
tblAssetCustom.Model Like '%Latitude 3379%' Or
tblAssetCustom.Model Like '%Vostro 14 5468%' Or
tblAssetCustom.Model Like '%Vostro 15 5568%' Or
tblAssetCustom.Model Like '%Vostro 3267%' Or tblAssetCustom.Model Like
'%Vostro 3268%' Or tblAssetCustom.Model Like '%Vostro 3572%' Or
tblAssetCustom.Model Like '%Vostro 3582%' Or tblAssetCustom.Model Like
'%Vostro 3660%' Or tblAssetCustom.Model Like '%Vostro 3667%' Or
tblAssetCustom.Model Like '%Vostro 3668%' Or tblAssetCustom.Model Like
'%Vostro 3669%' Or tblAssetCustom.Model Like '%Wyse 7040%' Or
tblAssetCustom.Model Like '%XPS 8930%') And tblState.Statename = 'Active'
Order By tblAssets.Domain,
tblAssets.AssetName

Audit and Take Action in 3 Easy Steps

1. Download & Install Lansweeper

3. Run the Audit & Take Action

Download Lansweeper to Run this Audit