Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-32860

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.

Published

2024-06-13T13:15:49.517

Last Modified

2024-11-21T09:15:52.723

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-20
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	dell	alienware_area_51m_r2_firmware	< 1.26.0	Yes
Hardware	dell	alienware_area_51m_r2	-	No
Operating System	dell	alienware_aurora_r11_firmware	< 1.0.24	Yes
Hardware	dell	alienware_aurora_r11	-	No
Operating System	dell	alienware_aurora_r12_firmware	< 1.1.25	Yes
Hardware	dell	alienware_aurora_r12	-	No
Operating System	dell	alienware_aurora_r13_firmware	≤ 1.1.19	Yes
Hardware	dell	alienware_aurora_r13	-	No
Operating System	dell	alienware_aurora_r15_firmware	< 1.1.12	Yes
Hardware	dell	alienware_aurora_r15	-	No
Operating System	dell	alienware_aurora_r15_amd_firmware	< 1.13.0	Yes
Hardware	dell	alienware_aurora_r15_amd	-	No
Operating System	dell	alienware_aurora_ryzen_edition_r14_firmware	< 2.18.0	Yes
Hardware	dell	alienware_aurora_ryzen_edition_r14	-	No
Operating System	dell	alienware_m15_r3_firmware	< 1.27.0	Yes
Hardware	dell	alienware_m15_r3	-	No
Operating System	dell	alienware_m15_r4_firmware	≤ 1.21.0	Yes
Hardware	dell	alienware_m15_r4	-	No
Operating System	dell	alienware_m17_r3_firmware	< 1.27.0	Yes
Hardware	dell	alienware_m17_r3	-	No
Operating System	dell	alienware_m17_r4_firmware	≤ 1.21.0	Yes
Hardware	dell	alienware_m17_r4	-	No
Operating System	dell	alienware_x14_firmware	≤ 1.18.0	Yes
Hardware	dell	alienware_x14	-	No
Operating System	dell	alienware_x15_r1_firmware	≤ 1.22.0	Yes
Hardware	dell	alienware_x15_r1	-	No
Operating System	dell	alienware_x15_r2_firmware	< 1.20.0	Yes
Hardware	dell	alienware_x15_r2	-	No
Operating System	dell	alienware_x17_r1_firmware	≤ 1.22.0	Yes
Hardware	dell	alienware_x17_r1	-	No
Operating System	dell	alienware_x17_r2_firmware	< 1.20.0	Yes
Hardware	dell	alienware_x17_r2	-	No
Operating System	dell	aurora_r16_firmware	< 2.7.0	Yes
Hardware	dell	aurora_r16	-	No
Operating System	dell	inspiron_15_3510_firmware	< 1.19.0	Yes
Hardware	dell	inspiron_15_3510	-	No
Operating System	dell	inspiron_15_352_firmware	< 1.14.0	Yes
Hardware	dell	inspiron_15_352	-	No
Operating System	dell	inspiron_3502_firmware	< 1.16.0	Yes
Hardware	dell	inspiron_3502	-	No
Operating System	dell	xps_8950_firmware	< 1.19.0	Yes
Hardware	dell	xps_8950	-	No
Operating System	dell	xps_8960_firmware	< 2.6.0	Yes
Hardware	dell	xps_8960	-	No

References

https://www.dell.com/support/kbdoc/en-us/000223440/dsa-2024-125 Vendor Advisory ([email protected])
https://www.dell.com/support/kbdoc/en-us/000223440/dsa-2024-125 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)