First published: Wed Mar 13 2024(Updated: )
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Dell PowerEdge T360 Firmware | <1.1.1 | |
Dell Poweredge T360 Firmware | ||
All of | ||
Dell PowerEdge R360 Firmware | <1.1.1 | |
Dell Poweredge R360 Firmware | ||
All of | ||
Dell PowerEdge R650xs Firmware | <1.13.2 | |
Dell PowerEdge R650 firmware | ||
All of | ||
Dell PowerEdge R750 Firmware | <1.13.2 | |
Dell PowerEdge R750 | ||
All of | ||
Dell PowerEdge R750XA Firmware | <1.13.2 | |
Dell PowerEdge R750XA Firmware | ||
All of | ||
Dell PowerEdge c6520 firmware | <1.13.2 | |
Dell PowerEdge C6520 | ||
All of | ||
Dell PowerEdge MX750c Firmware | <1.13.2 | |
Dell PowerEdge MX750c Firmware | ||
All of | ||
Dell PowerEdge R550 | <1.13.2 | |
Dell PowerEdge R550 | ||
All of | ||
Dell PowerEdge R450 Firmware | <1.13.2 | |
Dell PowerEdge R450 Firmware | ||
All of | ||
Dell PowerEdge R650 firmware | <1.13.2 | |
Dell PowerEdge R650xs Firmware | ||
All of | ||
Dell PowerEdge R750xs firmware | <1.13.2 | |
Dell PowerEdge R750xs Firmware | ||
All of | ||
Dell PowerEdge T550 firmware | <1.13.2 | |
Dell PowerEdge T550 firmware | ||
All of | ||
Dell XR11 Firmware | <1.13.2 | |
Dell PowerEdge XR11 Firmware | ||
All of | ||
Dell XR12 Firmware | <1.13.2 | |
Dell PowerEdge XR12 Firmware | ||
All of | ||
Dell PowerEdge XR4510C Firmware | <1.14.1 | |
Dell PowerEdge XR4510C Firmware | ||
All of | ||
Dell PowerEdge xr4520c firmware | <1.14.1 | |
Dell PowerEdge xr4520c firmware | ||
All of | ||
Dell T150 Firmware | <1.9.1 | |
Dell PowerEdge T150 | ||
All of | ||
Dell T350 Firmware | <1.9.1 | |
Dell PowerEdge T350 Firmware | ||
All of | ||
Dell PowerEdge R250 Firmware | <1.9.1 | |
Dell PowerEdge R250 | ||
All of | ||
Dell PowerEdge R350 | <1.9.1 | |
Dell PowerEdge R350 Firmware | ||
All of | ||
Dell PowerEdge R740 Firmware | <2.21.2 | |
Dell PowerEdge R740 Firmware | ||
All of | ||
Dell PowerEdge R740xd Firmware | <2.21.2 | |
Dell PowerEdge R740xd2 | ||
All of | ||
Dell PowerEdge R640 Firmware | <2.21.2 | |
Dell PowerEdge R640 Firmware | ||
All of | ||
Dell PowerEdge R940 Firmware | <2.21.2 | |
Dell PowerEdge R940xa Firmware | ||
All of | ||
Dell PowerEdge R540 Firmware | <2.21.1 | |
Dell PowerEdge R540 Firmware | ||
All of | ||
Dell PowerEdge R440 Firmware | <2.21.1 | |
Dell PowerEdge R440 Firmware | ||
All of | ||
Dell PowerEdge T440 | <2.21.1 | |
Dell PowerEdge T440 Firmware | ||
All of | ||
Dell PowerEdge XR2 Firmware | <2.21.1 | |
Dell PowerEdge XR2 Firmware | ||
All of | ||
Dell PowerEdge R740xd2 Firmware | <2.21.1 | |
Dell PowerEdge R740xd2 Firmware | ||
All of | ||
Dell PowerEdge R840 Firmware | <2.21.0 | |
Dell PowerEdge R840 Firmware | ||
All of | ||
Dell PowerEdge R940xa | <2.21.0 | |
Dell PowerEdge R940xa | ||
All of | ||
Dell PowerEdge T640 Firmware | <2.21.0 | |
Juniper T640 | ||
All of | ||
Dell PowerEdge | <2.21.0 | |
Dell PowerEdge c6420 firmware | ||
All of | ||
Dell PowerEdge FC640 | <2.21.0 | |
Dell PowerEdge FC640 | ||
All of | ||
Dell PowerEdge m640 | <2.21.0 | |
Dell PowerEdge m640 Firmware | ||
All of | ||
Dell PowerEdge m640 (PE VRTX) Firmware | <2.21.0 | |
Dell PowerEdge m640 | ||
All of | ||
Dell MX740c Firmware | <2.21.0 | |
Dell MX740c | ||
All of | ||
Dell MX840c Firmware | <2.21.0 | |
Dell PowerEdge mx840c firmware | ||
All of | ||
Dell PowerEdge C4140 Firmware | <2.21.1 | |
Dell PowerEdge C4140 | ||
All of | ||
Dell DSS 8440 Firmware | <2.21.0 | |
Dell DSS 8440 Firmware | ||
All of | ||
Dell PowerEdge XE2420 Firmware | <2.21.1 | |
Dell PowerEdge xe2420 firmware | ||
All of | ||
Dell PowerEdge XE7420 Firmware | <2.21.0 | |
Dell PowerEdge xe7420 firmware | ||
All of | ||
Dell XE7440 Firmware | <2.21.0 | |
Dell PowerEdge xe7440 firmware | ||
All of | ||
Dell PowerEdge R730 Firmware | <2.19.0 | |
Dell PowerEdge R730 Firmware | ||
All of | ||
Dell PowerEdge R730xd Firmware | <2.19.0 | |
Dell PowerEdge R730xd Firmware | ||
All of | ||
Dell PowerEdge R630 Firmware | <2.19.0 | |
Dell PowerEdge R630 Firmware | ||
All of | ||
Dell C4130 Firmware | <2.19.0 | |
Dell PowerEdge C4130 | ||
All of | ||
Dell PowerEdge R930 firmware | <2.14.0 | |
Dell PowerEdge R930 firmware | ||
All of | ||
Dell PowerEdge M630 (PE VRTX) Firmware | <2.19.0 | |
Dell PowerEdge M630 Firmware | ||
All of | ||
Dell PowerEdge m630 (PE VRTX) Firmware | <2.19.0 | |
Dell PowerEdge m630 | ||
All of | ||
Dell PowerEdge Firmware | <2.19.0 | |
Dell PowerEdge FC630 Firmware | ||
All of | ||
Dell PowerEdge FC430 | <2.19.0 | |
Dell PowerEdge FC430 | ||
All of | ||
Dell M830 | <2.19.0 | |
Dell PowerEdge M830 Firmware | ||
All of | ||
Dell PowerEdge m830 (pe vrtx) firmware | <2.19.0 | |
Dell PowerEdge m830 (PE VRTX) | ||
All of | ||
Dell PowerEdge FC830 | <2.19.0 | |
Dell PowerEdge FC830 Firmware | ||
All of | ||
Dell PowerEdge T630 Firmware | <2.19.0 | |
Dell PowerEdge t630 firmware | ||
All of | ||
Dell PowerEdge R530 Firmware | <2.19.0 | |
Dell PowerEdge R530 Firmware | ||
All of | ||
Dell PowerEdge R430 Firmware | <2.19.0 | |
Dell PowerEdge R430 Firmware | ||
All of | ||
Dell PowerEdge T430 Firmware | <2.19.0 | |
Dell PowerEdge T430 Firmware | ||
All of | ||
Dell PowerEdge R830 | <1.19.0 | |
Dell PowerEdge R830 | ||
All of | ||
Dell PowerEdge C6320 Firmware | <2.19.0 | |
Dell PowerEdge C6320 | ||
All of | ||
Dell T130 Firmware | <2.20.0 | |
Dell PowerEdge T130 | ||
All of | ||
Dell PowerEdge R230 Firmware | <2.20.0 | |
Dell PowerEdge R230 Firmware | ||
All of | ||
Dell PowerEdge T330 Firmware | <2.20.0 | |
Dell PowerEdge T330 Firmware | ||
All of | ||
Dell PowerEdge R330 Firmware | <2.20.0 | |
Dell PowerEdge R330 Firmware | ||
All of | ||
Dell NX3240 Firmware | <2.21.2 | |
Dell EMC Storage NX3240 Firmware | ||
All of | ||
Dell NX3340 Firmware | <2.21.2 | |
Dell EMC Storage NX3340 Firmware | ||
All of | ||
Dell Storage NX3230 Firmware | <2.19.0 | |
Dell Storage Nx3230 Firmware | ||
All of | ||
Dell Storage NX3330 Firmware | <2.19.0 | |
Dell Storage Nx3330 Firmware | ||
All of | ||
Dell NX430 Firmware | <2.20.0 | |
Dell Storage Nx430 Firmware | ||
All of | ||
Dell EMC XC Core XC450 Firmware | <1.13.2 | |
Dell EMC XC Core XC450 Firmware | ||
All of | ||
Dell EMC XC Core XC650 Firmware | <1.13.2 | |
Dell EMC XC650 | ||
All of | ||
Dell EMC XC Series XC750 | <1.13.2 | |
Dell EMC XC Series XC750 | ||
All of | ||
Dell EMC XC Core XC750XA | <1.13.2 | |
Dell EMC XC Core XC750XA | ||
All of | ||
Dell EMC XC Core XC6520 Firmware | <1.13.2 | |
Dell EMC XC Core XC6520 Firmware | ||
All of | ||
Dell EMC XC Core 6420 Firmware | <2.21.0 | |
Dell EMC XC Core 6420 Firmware | ||
All of | ||
Dell EMC XC Core XC640 Firmware | <2.21.2 | |
Dell EMC XC Core XC640 System | ||
All of | ||
Dell EMC XC Core XC740XD Firmware | <2.21.2 | |
Dell EMC XC Core XC740XD Firmware | ||
All of | ||
Dell EMC XC Core XC740XD2 Firmware | <2.21.1 | |
Dell EMC XC Core XC740XD2 Firmware | ||
All of | ||
Dell EMC XC Core XC940 Firmware | <2.21.2 | |
Dell EMC XC940 | ||
All of | ||
Dell EMC XC Core XCX-R2 | <2.21.1 | |
Dell EMC XC Core XCX-R2 | ||
All of | ||
Dell XC6320 | <2.19.0 | |
Dell XC6320 Firmware | ||
All of | ||
Dell XC430 Firmware | <2.19.0 | |
Dell XC430 Firmware | ||
All of | ||
Dell XC630 Firmware | <2.19.0 | |
Dell XC630 Firmware | ||
All of | ||
Dell XC730 Firmware | <2.19.0 | |
Dell XC730 Firmware | ||
All of | ||
Dell XC730xd Firmware | <2.19.0 | |
Dell XC730xd Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-0161 is classified as a medium severity vulnerability due to the potential for local low privileged attackers to exploit it.
To fix CVE-2024-0161, update the firmware of affected Dell PowerEdge Servers and Precision Rack Servers to the latest version provided by Dell.
CVE-2024-0161 affects various models of Dell PowerEdge Servers and Precision Rack Servers prior to their respective firmware updates.
CVE-2024-0161 exploits an improper verification of the SMM communication buffer, which could allow arbitrary writes to SMRAM.
CVE-2024-0161 requires local access by a low privileged attacker, making it less likely to be exploited remotely.