Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-22429

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution.

Published

2024-05-17T16:15:07.477

Last Modified

2025-01-30T15:48:29.167

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-20
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	dell	edge_gateway_5000_firmware	< 1.28.0	Yes
Hardware	dell	edge_gateway_5000	-	No
Operating System	dell	precision_5820_tower_firmware	< 2.36.0	Yes
Hardware	dell	precision_5820_tower	-	No
Operating System	dell	edge_gateway_3000_firmware	< 1.18.0	Yes
Hardware	dell	edge_gateway_3000	-	No
Operating System	dell	embedded_box_pc_3000_firmware	< 1.24.0	Yes
Hardware	dell	embedded_box_pc_3000	-	No
Operating System	dell	embedded_box_pc_5000_firmware	< 1.25.0	Yes
Hardware	dell	embedded_box_pc_5000	-	No
Operating System	dell	latitude_12_rugged_extreme_7214_firmware	< 1.46.0	Yes
Hardware	dell	latitude_12_rugged_extreme_7214	-	No
Operating System	dell	latitude_13_3380_firmware	< 1.27.0	Yes
Hardware	dell	latitude_13_3380	-	No
Operating System	dell	latitude_3180_firmware	< 1.29.0	Yes
Hardware	dell	latitude_3180	-	No
Operating System	dell	latitude_3189_firmware	< 1.29.0	Yes
Hardware	dell	latitude_3189	-	No
Operating System	dell	latitude_3190_firmware	< 1.34.0	Yes
Hardware	dell	latitude_3190	-	No
Operating System	dell	latitude_3190_2-in-1_firmware	< 1.34.0	Yes
Hardware	dell	latitude_3190_2-in-1	-	No
Operating System	dell	latitude_3300_firmware	< 1.28.0	Yes
Hardware	dell	latitude_3300	-	No
Operating System	dell	latitude_3390_2-in-1_firmware	< 1.31.0	Yes
Hardware	dell	latitude_3390_2-in-1	-	No
Operating System	dell	latitude_5280_firmware	< 1.36.0	Yes
Hardware	dell	latitude_5280	-	No
Operating System	dell	latitude_5288_firmware	< 1.36.0	Yes
Hardware	dell	latitude_5288	-	No
Operating System	dell	latitude_5290_firmware	< 1.35.0	Yes
Hardware	dell	latitude_5290	-	No
Operating System	dell	latitude_5290_2-in-1_firmware	< 1.34.0	Yes
Hardware	dell	latitude_5290_2-in-1	-	No
Operating System	dell	latitude_5400_firmware	< 1.30.0	Yes
Hardware	dell	latitude_5400	-	No
Operating System	dell	latitude_5414_rugged_firmware	< 1.46.0	Yes
Hardware	dell	latitude_5414_rugged	-	No
Operating System	dell	latitude_5420_rugged_firmware	< 1.32.0	Yes
Hardware	dell	latitude_5420_rugged	-	No
Operating System	dell	latitude_5424_rugged_firmware	< 1.32.0	Yes
Hardware	dell	latitude_5424_rugged	-	No
Operating System	dell	latitude_5480_firmware	< 1.36.0	Yes
Hardware	dell	latitude_5480	-	No
Operating System	dell	latitude_5488_firmware	< 1.36.0	Yes
Hardware	dell	latitude_5488	-	No
Operating System	dell	latitude_5490_firmware	< 1.35.0	Yes
Hardware	dell	latitude_5490	-	No
Operating System	dell	latitude_5580_firmware	< 1.36.0	Yes
Hardware	dell	latitude_5580	-	No
Operating System	dell	latitude_5590_firmware	< 1.35.0	Yes
Hardware	dell	latitude_5590	-	No
Operating System	dell	latitude_7212_rugged_extreme_tablet_firmware	< 1.50.0	Yes
Hardware	dell	latitude_7212_rugged_extreme_tablet	-	No
Operating System	dell	latitude_7280_firmware	< 1.37.0	Yes
Hardware	dell	latitude_7280	-	No
Operating System	dell	latitude_7285_2-in-1_firmware	< 1.26.0	Yes
Hardware	dell	latitude_7285_2-in-1	-	No
Operating System	dell	latitude_7290_firmware	< 1.38.0	Yes
Hardware	dell	latitude_7290	-	No
Operating System	dell	latitude_7380_firmware	< 1.37.0	Yes
Hardware	dell	latitude_7380	-	No
Operating System	dell	latitude_7390_firmware	< 1.38.0	Yes
Hardware	dell	latitude_7390	-	No
Operating System	dell	latitude_7390_2-in-1_firmware	< 1.35.0	Yes
Hardware	dell	latitude_7390_2-in-1	-	No
Operating System	dell	latitude_7414_rugged_firmware	< 1.46.0	Yes
Hardware	dell	latitude_7414_rugged	-	No
Operating System	dell	latitude_7424_rugged_extreme_firmware	< 1.32.0	Yes
Hardware	dell	latitude_7424_rugged_extreme	-	No
Operating System	dell	latitude_7480_firmware	< 1.37.0	Yes
Hardware	dell	latitude_7480	-	No
Operating System	dell	latitude_7490_firmware	< 1.38.0	Yes
Hardware	dell	latitude_7490	-	No
Operating System	dell	optiplex_3050_firmware	< 1.30.0	Yes
Hardware	dell	optiplex_3050	-	No
Operating System	dell	optiplex_3050_all-in-one_firmware	< 1.32.0	Yes
Hardware	dell	optiplex_3050_all-in-one	-	No
Operating System	dell	optiplex_5050_firmware	< 1.30.0	Yes
Hardware	dell	optiplex_5050	-	No
Operating System	dell	optiplex_7450_all-in-one_firmware	< 1.32.0	Yes
Hardware	dell	optiplex_7450_all-in-one	-	No
Operating System	dell	precision_3420_tower_firmware	< 2.30.0	Yes
Hardware	dell	precision_3420_tower	-	No
Operating System	dell	precision_3520_firmware	< 1.36.0	Yes
Hardware	dell	precision_3520	-	No
Operating System	dell	precision_3620_tower_firmware	< 2.30.0	Yes
Hardware	dell	precision_3620_tower	-	No
Operating System	dell	precision_5520_firmware	< 1.38.0	Yes
Hardware	dell	precision_5520	-	No
Operating System	dell	precision_5530_2-in-1_firmware	< 1.31.8	Yes
Hardware	dell	precision_5530_2-in-1	-	No
Operating System	dell	precision_7520_firmware	< 1.36.0	Yes
Hardware	dell	precision_7520	-	No
Operating System	dell	precision_7720_firmware	< 1.36.0	Yes
Hardware	dell	precision_7720	-	No
Operating System	dell	wyse_5070_firmware	< 1.31.0	Yes
Hardware	dell	wyse_5070	-	No
Operating System	dell	wyse_7040_thin_client_firmware	< 1.25.0	Yes
Hardware	dell	wyse_7040_thin_client	-	No

References

https://www.dell.com/support/kbdoc/en-us/000221102/dsa-2024-020 Vendor Advisory ([email protected])
https://www.dell.com/support/kbdoc/en-us/000221102/dsa-2024-020 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)