HIGH✓ PATCH🇬🇧 English

CVE-2024-0161

CVSS 7.2v3.1pub. 2024-03-13upd. 2025-02-04

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H
  • Dell Dss 8440

    HW
    Dell
    wszystkie wersje
  • Dell Dss 8440 Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge C4130

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge C4130 Firmware

    OS
    Dell
    < 2.19.0
  • Dell Poweredge C4140

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge C4140 Firmware

    OS
    Dell
    < 2.21.1
  • Dell Poweredge C6420

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge C6420 Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge C6520

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge C6520 Firmware

    OS
    Dell
    < 1.13.2
  • Dell Poweredge Fc640

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge Fc640 Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge M630

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge M630 Firmware

    OS
    Dell
    < 2.19.0
  • Dell Poweredge M630 \(pe Vrtx\)

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge M630 \(pe Vrtx\) Firmware

    OS
    Dell
    < 2.19.0
  • Dell Poweredge M640

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge M640 Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge M640 \(pe Vrtx\)

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge M640 \(pe Vrtx\) Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge Mx740c

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge Mx740c Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge Mx750c

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge Mx750c Firmware

    OS
    Dell
    < 1.13.2
  • Dell Poweredge Mx840c

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge Mx840c Firmware

    OS
    Dell
    < 2.21.0
  • Dell Poweredge R250

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge R250 Firmware

    OS
    Dell
    < 1.9.1
  • Dell Poweredge R350

    HW
    Dell
    wszystkie wersje
  • Dell Poweredge R350 Firmware

    OS
    Dell
    < 1.9.1
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2024-0172HIGH7.9ten sam produkt

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management security vuln...

CVE-2024-22453HIGH7.2ten sam produkt

Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulnerability. A local high privileged attack...

CVE-2023-32460HIGH8.8ten sam produkt

Dell PowerEdge BIOS contains an improper privilege management security vulnerability. An unauthenticated loca...

CVE-2021-21557HIGH8.1ten sam produkt

Dell PowerEdge Server BIOS and select Dell Precision Rack BIOS contain an out-of-bounds array access vulnerabi...

CVE-2025-26482MEDIUM4.9ten sam produkt

Dell PowerEdge Server BIOS and Dell iDRAC9, all versions, contains an Information Disclosure vulnerability. A ...