CVE-2024-0160
First published: Wed Jun 12 2024(Updated: )
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Dell XPS 17 9700 Firmware | <1.30.0 | |
| Dell XPS 17 9700 Firmware | ||
| All of | ||
| Dell XPS 9500 Firmware | <1.31.0 | |
| Dell XPS 15 9500 | ||
| All of | ||
| Dell Vostro 7500 Firmware | <1.28.0 | |
| Dell Vostro 7500 Firmware | ||
| All of | ||
| Dell Precision 5750 Firmware | <1.30.0 | |
| Dell Precision 17 M5750 Firmware | ||
| All of | ||
| Dell Precision 5550 Firmware | <1.31.0 | |
| Dell Precision 5550 Firmware | ||
| All of | ||
| Dell Latitude 3520 Firmware | <1.36.0 | |
| Dell Latitude 3520 Firmware | ||
| All of | ||
| Dell Latitude 3510 Firmware | <1.29.0 | |
| Dell Latitude 3510 Firmware | ||
| All of | ||
| Dell Latitude 3420 Firmware | <1.36.0 | |
| Dell Latitude 3420 Firmware | ||
| All of | ||
| Dell Latitude 3410 Firmware | <1.29.0 | |
| Dell Latitude 3410 | ||
| All of | ||
| Dell Inspiron 7501 Firmware | <1.28.0 | |
| Dell Inspiron 7501 Firmware | ||
| All of | ||
| Dell Inspiron 7500 Firmware | <1.28.0 | |
| Dell Inspiron 7500 Firmware | ||
| All of | ||
| Dell G7 17 7700 Firmware | <1.32.0 | |
| Dell G7 17 7700 | ||
| All of | ||
| Dell G7 15 7500 Firmware | <1.32.0 | |
| Dell G7 15 7500 Firmware | ||
| All of | ||
| Dell G5 15 5500 Firmware | <1.30.0 | |
| Dell G5 15 5500 Firmware | ||
| All of | ||
| Dell G3 15 3500 firmware | <1.30.0 | |
| Dell G3 15 3500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-0160?
CVE-2024-0160 has been classified as a medium severity vulnerability.
How do I fix CVE-2024-0160?
To fix CVE-2024-0160, update the affected firmware to the latest version provided by Dell.
Which systems are affected by CVE-2024-0160?
CVE-2024-0160 affects various Dell models including XPS, Vostro, Precision, Latitude, Inspiron, and G series laptops.
What type of vulnerability is CVE-2024-0160?
CVE-2024-0160 is an incorrect authorization vulnerability allowing attackers with physical access to bypass BIOS settings.
Can CVE-2024-0160 be exploited remotely?
No, CVE-2024-0160 requires physical access to the affected systems to be exploited.
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell xps 17 9700 firmware
- canonical/dell xps 9500 firmware
- canonical/dell xps 15 9500
- canonical/dell vostro 7500 firmware
- canonical/dell precision 5750 firmware
- canonical/dell precision 17 m5750 firmware
- canonical/dell precision 5550 firmware
- canonical/dell latitude 3520 firmware
- canonical/dell latitude 3510 firmware
- canonical/dell latitude 3420 firmware
- canonical/dell latitude 3410 firmware
- canonical/dell latitude 3410
- canonical/dell inspiron 7501 firmware
- canonical/dell inspiron 7500 firmware
- canonical/dell g7 17 7700 firmware
- canonical/dell g7 17 7700
- canonical/dell g7 15 7500 firmware
- canonical/dell g5 15 5500 firmware
- canonical/dell g3 15 3500 firmware
- canonical/dell g3 15 3500