CVE-2024-32859
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
13/06/2024
Last modified:
19/09/2024
Description
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
Impact
Base Score 3.x
8.20
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:dell:xps_8960_firmware:*:*:*:*:*:*:*:* | 2.6.0 (excluding) | |
cpe:2.3:h:dell:xps_8960:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:xps_8950_firmware:*:*:*:*:*:*:*:* | 1.19.0 (excluding) | |
cpe:2.3:h:dell:xps_8950:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:inspiron_3502_firmware:*:*:*:*:*:*:*:* | 1.16.0 (excluding) | |
cpe:2.3:h:dell:inspiron_3502:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:inspiron_15_3521_firmware:*:*:*:*:*:*:*:* | 1.14.0 (excluding) | |
cpe:2.3:h:dell:inspiron_15_3521:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:inspiron_15_3510_firmware:*:*:*:*:*:*:*:* | 1.19.0 (excluding) | |
cpe:2.3:h:dell:inspiron_15_3510:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:aurora_r16_firmware:*:*:*:*:*:*:*:* | 2.7.0 (excluding) | |
cpe:2.3:h:dell:aurora_r16:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:alienware_x17_r2_firmware:*:*:*:*:*:*:*:* | 1.20.0 (excluding) | |
cpe:2.3:h:dell:alienware_x17_r2:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:dell:alienware_x17_r1_firmware:*:*:*:*:*:*:*:* | 1.22.0 (excluding) |
To consult the complete list of CPE names with products and versions, see this page