Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.

Project Subscriptions

Vendors Products
Dss 8440 Subscribe
Dss 8440 Firmware Subscribe
Emc Storage Nx3240 Subscribe
Emc Storage Nx3240 Firmware Subscribe
Emc Storage Nx3340 Subscribe
Emc Storage Nx3340 Firmware Subscribe
Emc Xc Core 6420 System Subscribe
Emc Xc Core 6420 System Firmware Subscribe
Emc Xc Core Xc640 System Subscribe
Emc Xc Core Xc640 System Firmware Subscribe
Emc Xc Core Xc740xd2 Subscribe
Emc Xc Core Xc740xd2 Firmware Subscribe
Emc Xc Core Xc740xd System Subscribe
Emc Xc Core Xc740xd System Firmware Subscribe
Emc Xc Core Xc940 System Subscribe
Emc Xc Core Xc940 System Firmware Subscribe
Emc Xc Core Xcxr2 Subscribe
Emc Xc Core Xcxr2 Firmware Subscribe
Poweredge C4140 Subscribe
Poweredge C4140 Firmware Subscribe
Poweredge C6420 Subscribe
Poweredge C6420 Firmware Subscribe
Poweredge Fc640 Subscribe
Poweredge Fc640 Firmware Subscribe
Poweredge M640 Subscribe
Poweredge M640 \(for Pe Vrtx\) Subscribe
Poweredge M640 \(for Pe Vrtx\) Firmware Subscribe
Poweredge M640 Firmware Subscribe
Poweredge Mx740c Subscribe
Poweredge Mx740c Firmware Subscribe
Poweredge Mx840c Subscribe
Poweredge Mx840c Firmware Subscribe
Poweredge R440 Subscribe
Poweredge R440 Firmware Subscribe
Poweredge R540 Subscribe
Poweredge R540 Firmware Subscribe
Poweredge R640 Subscribe
Poweredge R640 Firmware Subscribe
Poweredge R740 Subscribe
Poweredge R740 Firmware Subscribe
Poweredge R740xd Subscribe
Poweredge R740xd2 Subscribe
Poweredge R740xd2 Firmware Subscribe
Poweredge R740xd Firmware Subscribe
Poweredge R840 Subscribe
Poweredge R840 Firmware Subscribe
Poweredge R940 Subscribe
Poweredge R940 Firmware Subscribe
Poweredge R940xa Subscribe
Poweredge R940xa Firmware Subscribe
Poweredge T440 Subscribe
Poweredge T440 Firmware Subscribe
Poweredge T640 Subscribe
Poweredge T640 Firmware Subscribe
Poweredge Xe2420 Subscribe
Poweredge Xe2420 Firmware Subscribe
Poweredge Xe7420 Subscribe
Poweredge Xe7420 Firmware Subscribe
Poweredge Xe7440 Subscribe
Poweredge Xe7440 Firmware Subscribe
Poweredge Xr2 Subscribe
Poweredge Xr2 Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2024-37255 Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 20 Dec 2024 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell dss 8440
Dell dss 8440 Firmware
Dell emc Storage Nx3240
Dell emc Storage Nx3240 Firmware
Dell emc Storage Nx3340
Dell emc Storage Nx3340 Firmware
Dell emc Xc Core 6420 System
Dell emc Xc Core 6420 System Firmware
Dell emc Xc Core Xc640 System
Dell emc Xc Core Xc640 System Firmware
Dell emc Xc Core Xc740xd2
Dell emc Xc Core Xc740xd2 Firmware
Dell emc Xc Core Xc740xd System
Dell emc Xc Core Xc740xd System Firmware
Dell emc Xc Core Xc940 System
Dell emc Xc Core Xc940 System Firmware
Dell emc Xc Core Xcxr2
Dell emc Xc Core Xcxr2 Firmware
Dell poweredge C4140
Dell poweredge C4140 Firmware
Dell poweredge C6420
Dell poweredge C6420 Firmware
Dell poweredge Fc640
Dell poweredge Fc640 Firmware
Dell poweredge M640
Dell poweredge M640 \(for Pe Vrtx\)
Dell poweredge M640 \(for Pe Vrtx\) Firmware
Dell poweredge M640 Firmware
Dell poweredge Mx740c
Dell poweredge Mx740c Firmware
Dell poweredge Mx840c
Dell poweredge Mx840c Firmware
Dell poweredge R440
Dell poweredge R440 Firmware
Dell poweredge R540
Dell poweredge R540 Firmware
Dell poweredge R640
Dell poweredge R640 Firmware
Dell poweredge R740
Dell poweredge R740 Firmware
Dell poweredge R740xd
Dell poweredge R740xd2
Dell poweredge R740xd2 Firmware
Dell poweredge R740xd Firmware
Dell poweredge R840
Dell poweredge R840 Firmware
Dell poweredge R940
Dell poweredge R940 Firmware
Dell poweredge R940xa
Dell poweredge R940xa Firmware
Dell poweredge T440
Dell poweredge T440 Firmware
Dell poweredge T640
Dell poweredge T640 Firmware
Dell poweredge Xe2420
Dell poweredge Xe2420 Firmware
Dell poweredge Xe7420
Dell poweredge Xe7420 Firmware
Dell poweredge Xe7440
Dell poweredge Xe7440 Firmware
Dell poweredge Xr2
Dell poweredge Xr2 Firmware
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:h:dell:dss_8440:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_storage_nx3240:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_storage_nx3340:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_6420_system:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_xc640_system:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_xc740xd2:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_xc740xd_system:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_xc940_system:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:emc_xc_core_xcxr2:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_c4140:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_c6420:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_fc640:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_m640:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_m640_\(for_pe_vrtx\):-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_mx740c:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_mx840c:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r440:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r540:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r640:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r740:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r740xd2:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r740xd:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r840:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r940:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_r940xa:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_t440:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_t640:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_xe2420:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_xe7420:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_xe7440:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:poweredge_xr2:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:dss_8440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_storage_nx3240_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_storage_nx3340_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_6420_system_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_xc640_system_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_xc740xd2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_xc740xd_system_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_xc940_system_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_xc_core_xcxr2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_c4140_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_c6420_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_fc640_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_m640_\(for_pe_vrtx\)_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_m640_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_mx740c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_mx840c_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r540_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r640_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r740_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r740xd2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r740xd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r840_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r940_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_r940xa_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_t440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_t640_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_xe2420_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_xe7420_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_xe7440_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:poweredge_xr2_firmware:*:*:*:*:*:*:*:*
Vendors & Products Dell
Dell dss 8440
Dell dss 8440 Firmware
Dell emc Storage Nx3240
Dell emc Storage Nx3240 Firmware
Dell emc Storage Nx3340
Dell emc Storage Nx3340 Firmware
Dell emc Xc Core 6420 System
Dell emc Xc Core 6420 System Firmware
Dell emc Xc Core Xc640 System
Dell emc Xc Core Xc640 System Firmware
Dell emc Xc Core Xc740xd2
Dell emc Xc Core Xc740xd2 Firmware
Dell emc Xc Core Xc740xd System
Dell emc Xc Core Xc740xd System Firmware
Dell emc Xc Core Xc940 System
Dell emc Xc Core Xc940 System Firmware
Dell emc Xc Core Xcxr2
Dell emc Xc Core Xcxr2 Firmware
Dell poweredge C4140
Dell poweredge C4140 Firmware
Dell poweredge C6420
Dell poweredge C6420 Firmware
Dell poweredge Fc640
Dell poweredge Fc640 Firmware
Dell poweredge M640
Dell poweredge M640 \(for Pe Vrtx\)
Dell poweredge M640 \(for Pe Vrtx\) Firmware
Dell poweredge M640 Firmware
Dell poweredge Mx740c
Dell poweredge Mx740c Firmware
Dell poweredge Mx840c
Dell poweredge Mx840c Firmware
Dell poweredge R440
Dell poweredge R440 Firmware
Dell poweredge R540
Dell poweredge R540 Firmware
Dell poweredge R640
Dell poweredge R640 Firmware
Dell poweredge R740
Dell poweredge R740 Firmware
Dell poweredge R740xd
Dell poweredge R740xd2
Dell poweredge R740xd2 Firmware
Dell poweredge R740xd Firmware
Dell poweredge R840
Dell poweredge R840 Firmware
Dell poweredge R940
Dell poweredge R940 Firmware
Dell poweredge R940xa
Dell poweredge R940xa Firmware
Dell poweredge T440
Dell poweredge T440 Firmware
Dell poweredge T640
Dell poweredge T640 Firmware
Dell poweredge Xe2420
Dell poweredge Xe2420 Firmware
Dell poweredge Xe7420
Dell poweredge Xe7420 Firmware
Dell poweredge Xe7440
Dell poweredge Xe7440 Firmware
Dell poweredge Xr2
Dell poweredge Xr2 Firmware

Thu, 29 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 29 Aug 2024 04:45:00 +0000

Type Values Removed Values Added
Description Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.
Weaknesses CWE-20
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N'}


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2024-08-29T13:49:36.661Z

Reserved: 2024-06-13T14:41:01.527Z

Link: CVE-2024-38303

cve-icon Vulnrichment

Updated: 2024-08-29T13:49:31.236Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-29T11:15:25.970

Modified: 2024-12-20T14:40:09.410

Link: CVE-2024-38303

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses