Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability leading to exposure of some UEFI code, leading to arbitrary code execution or escalation of privilege.
Credits
Dell Technologies would also like to thank yngweijw (Jiawei Yin) for reporting this issue
Dell Technologies would like to thank the BINARLY efiXplorer team for reporting these issues
