CVE-2024-32859

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
13/06/2024
Last modified:
19/09/2024

Description

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:dell:xps_8960_firmware:*:*:*:*:*:*:*:* 2.6.0 (excluding)
cpe:2.3:h:dell:xps_8960:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:xps_8950_firmware:*:*:*:*:*:*:*:* 1.19.0 (excluding)
cpe:2.3:h:dell:xps_8950:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:inspiron_3502_firmware:*:*:*:*:*:*:*:* 1.16.0 (excluding)
cpe:2.3:h:dell:inspiron_3502:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:inspiron_15_3521_firmware:*:*:*:*:*:*:*:* 1.14.0 (excluding)
cpe:2.3:h:dell:inspiron_15_3521:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:inspiron_15_3510_firmware:*:*:*:*:*:*:*:* 1.19.0 (excluding)
cpe:2.3:h:dell:inspiron_15_3510:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:aurora_r16_firmware:*:*:*:*:*:*:*:* 2.7.0 (excluding)
cpe:2.3:h:dell:aurora_r16:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:alienware_x17_r2_firmware:*:*:*:*:*:*:*:* 1.20.0 (excluding)
cpe:2.3:h:dell:alienware_x17_r2:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:alienware_x17_r1_firmware:*:*:*:*:*:*:*:* 1.22.0 (excluding)


References to Advisories, Solutions, and Tools