American Megatrends Incorporated (AMI) Affected

Notified:  July 16, 2015 Updated: August 12, 2015

Statement Date:   August 12, 2015

Status

Affected

Vendor Statement

AMI has addressed the issue on a generic basis and is working with OEMs to implement fixes for projects in the field and production. End users should contact their board manufacturer for information on when a specific updated BIOS will be available.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Apple Affected

Notified:  June 01, 2015 Updated: July 30, 2015

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

Addendum

CVE-2015-3692

AsusTek Computer Inc. Unknown

Notified:  July 16, 2015 Updated: July 16, 2015

Status

Unknown

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor References

    Dell Computer Corporation, Inc. Affected

    Notified:  June 29, 2015 Updated: July 30, 2015

    Statement Date:   July 28, 2015

    Status

    Affected

    Vendor Statement

    Some older Client Solutions (CS) commercial platforms are affected by the vulnerability described in VU#577140. Updated BIOS code has been developed to mitigate the vulnerability by addressing the configuration error during resume. Applicable BIOS update patches and revisions to address this vulnerability are listed below: Dell System BIOS Update Availability Latitude E5420 A14 Available Latitude E5520 A14 Available Latitude E6220 A13 Available Latitude E6320 A19 Available Latitude E6420 / ATG A21 Available Latitude E6420 XFR A21 Available Latitude E6520 A19 Available Latitude XT3 A13 Available OptiPlex 390 A11 Available OptiPlex 790 A18 Available OptiPlex 990 A18 Available Precision Mobile Workstation M4600 A16 Available Precision Mobile Workstation M6600 A15 Available Precision Workstation T1600 A16 Available Precision Workstation T7600 A10 Available Precision Workstation T5600 A12 Available Precision Workstation T5600 XL A12 Available Precision Workstation T3600 A12 Available Latitude E4310 A14 Available Latitude E5410 A16 Available Latitude E5510 A16 Available Latitude E6410 / ATG A16 Available Latitude E6510 A16 Available Precision Mobile Workstation M4500 A15 Available Dell recommends customers update to the latest BIOS by downloading the patched releases from http://support.dell.com.

    Vendor Information

    We are not aware of further vendor information regarding this vulnerability.

    Vendor References

    Addendum

    CVE-2015-2890. Note that the researchers first notified Dell of this vulnerability on 8/15/2013.

    Hewlett-Packard Company Unknown

    Notified:  July 16, 2015 Updated: July 16, 2015

    Status

    Unknown

    Vendor Statement

    No statement is currently available from the vendor regarding this vulnerability.

    Vendor References

      IBM Corporation Unknown

      Notified:  July 16, 2015 Updated: July 16, 2015

      Status

      Unknown

      Vendor Statement

      No statement is currently available from the vendor regarding this vulnerability.

      Vendor References

        Insyde Software Corporation Unknown

        Notified:  July 16, 2015 Updated: July 16, 2015

        Status

        Unknown

        Vendor Statement

        No statement is currently available from the vendor regarding this vulnerability.

        Vendor References

          Intel Corporation Unknown

          Notified:  July 16, 2015 Updated: July 16, 2015

          Status

          Unknown

          Vendor Statement

          No statement is currently available from the vendor regarding this vulnerability.

          Vendor References

            Lenovo Not Affected

            Notified:  July 16, 2015 Updated: August 07, 2015

            Statement Date:   August 05, 2015

            Status

            Not Affected

            Vendor Statement

            No statement is currently available from the vendor regarding this vulnerability.

            Vendor Information

            We are not aware of further vendor information regarding this vulnerability.

            Phoenix Technologies Ltd. Unknown

            Notified:  July 16, 2015 Updated: July 16, 2015

            Status

            Unknown

            Vendor Statement

            No statement is currently available from the vendor regarding this vulnerability.

            Vendor References

              Sony Corporation Unknown

              Notified:  July 16, 2015 Updated: July 16, 2015

              Status

              Unknown

              Vendor Statement

              No statement is currently available from the vendor regarding this vulnerability.

              Vendor References

                Toshiba America Information Systems, Inc. Unknown

                Notified:  July 16, 2015 Updated: July 16, 2015

                Status

                Unknown

                Vendor Statement

                No statement is currently available from the vendor regarding this vulnerability.

                Vendor References

                  View all 12 vendors View less vendors