CVE-2024-0161: Input Validation
First published: Wed Mar 13 2024(Updated: )
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Dell Poweredge T360 Firmware | <1.1.1 | |
| Dell Poweredge T360 Firmware | ||
| All of | ||
| Dell Poweredge R360 Firmware | <1.1.1 | |
| Dell Poweredge R360 Firmware | ||
| All of | ||
| Dell PowerEdge r650 firmware | <1.13.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750 Firmware | <1.13.2 | |
| Dell PowerEdge R750 | ||
| All of | ||
| Dell PowerEdge R750XA Firmware | <1.13.2 | |
| Dell PowerEdge R750xa | ||
| All of | ||
| Dell PowerEdge c6520 firmware | <1.13.2 | |
| Dell PowerEdge C6520 | ||
| All of | ||
| Dell MX750c Firmware | <1.13.2 | |
| Dell PowerEdge mx750c firmware | ||
| All of | ||
| Dell PowerEdge r550 firmware | <1.13.2 | |
| Dell PowerEdge R550 | ||
| All of | ||
| Dell PowerEdge R450 Firmware | <1.13.2 | |
| Dell PowerEdge R450 Firmware | ||
| All of | ||
| Dell PowerEdge r650xs firmware | <1.13.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750xs firmware | <1.13.2 | |
| Dell PowerEdge R750xs firmware | ||
| All of | ||
| Dell PowerEdge T550 Firmware | <1.13.2 | |
| Dell PowerEdge t550 firmware | ||
| All of | ||
| Dell XR11 Firmware | <1.13.2 | |
| Dell PowerEdge XR11 Firmware | ||
| All of | ||
| Dell PowerEdge XR12 Firmware | <1.13.2 | |
| Dell PowerEdge XR12 Firmware | ||
| All of | ||
| Dell PowerEdge XR4510C Firmware | <1.14.1 | |
| Dell PowerEdge XR4510C Firmware | ||
| All of | ||
| Dell PowerEdge xr4520c firmware | <1.14.1 | |
| Dell PowerEdge xr4520c firmware | ||
| All of | ||
| Dell T150 Firmware | <1.9.1 | |
| Dell PowerEdge t150 | ||
| All of | ||
| Dell PowerEdge T350 Firmware | <1.9.1 | |
| Dell T350 | ||
| All of | ||
| Dell PowerEdge R250 Firmware | <1.9.1 | |
| Dell PowerEdge R250 | ||
| All of | ||
| Dell PowerEdge R350 Firmware | <1.9.1 | |
| Dell PowerEdge R350 Firmware | ||
| All of | ||
| Dell PowerEdge R740 Firmware | <2.21.2 | |
| Dell PowerEdge R740 Firmware | ||
| All of | ||
| Dell PowerEdge R740xd Firmware | <2.21.2 | |
| Dell PowerEdge R740xd2 | ||
| All of | ||
| Dell PowerEdge R640 Firmware | <2.21.2 | |
| Dell PowerEdge R640 Firmware | ||
| All of | ||
| Dell PowerEdge r940 firmware | <2.21.2 | |
| Dell PowerEdge R940xa Firmware | ||
| All of | ||
| Dell PowerEdge R540 Firmware | <2.21.1 | |
| Dell PowerEdge R540 Firmware | ||
| All of | ||
| Dell PowerEdge r440 firmware | <2.21.1 | |
| Dell PowerEdge R440 | ||
| All of | ||
| Dell PowerEdge T440 Firmware | <2.21.1 | |
| Dell PowerEdge T440 Firmware | ||
| All of | ||
| Dell PowerEdge XR2 Firmware | <2.21.1 | |
| Dell PowerEdge XR2 Firmware | ||
| All of | ||
| Dell PowerEdge R740xd2 Firmware | <2.21.1 | |
| Dell PowerEdge R740xd2 | ||
| All of | ||
| Dell PowerEdge R840 Firmware | <2.21.0 | |
| Dell PowerEdge R840 Firmware | ||
| All of | ||
| Dell PowerEdge R940xa | <2.21.0 | |
| Dell PowerEdge R940xa | ||
| All of | ||
| Dell PowerEdge T640 Firmware | <2.21.0 | |
| Dell PowerEdge T640 | ||
| All of | ||
| Dell PowerEdge c6420 firmware | <2.21.0 | |
| Dell PowerEdge C6420 | ||
| All of | ||
| Dell PowerEdge FC640 | <2.21.0 | |
| Dell PowerEdge FC640 | ||
| All of | ||
| Dell PowerEdge m640p Firmware | <2.21.0 | |
| Dell PowerEdge m640 Firmware | ||
| All of | ||
| Dell PowerEdge m640 (PE VRTX) Firmware | <2.21.0 | |
| Dell PowerEdge m640 | ||
| All of | ||
| Dell PowerEdge MX740c firmware | <2.21.0 | |
| Dell PowerEdge MX740c | ||
| All of | ||
| Dell PowerEdge mx840c firmware | <2.21.0 | |
| Dell PowerEdge MX840c | ||
| All of | ||
| Dell PowerEdge c4140 firmware | <2.21.1 | |
| Dell PowerEdge c4140 | ||
| All of | ||
| Dell DSS 8440 Firmware | <2.21.0 | |
| Dell DSS 8440 Firmware | ||
| All of | ||
| Dell PowerEdge xe2420 firmware | <2.21.1 | |
| Dell PowerEdge XE2420 Firmware | ||
| All of | ||
| Dell XE7420 Firmware | <2.21.0 | |
| Dell PowerEdge xe7420 firmware | ||
| All of | ||
| Dell PowerEdge xe7440 firmware | <2.21.0 | |
| Dell PowerEdge xe7440 | ||
| All of | ||
| Dell PowerEdge R730 Firmware | <2.19.0 | |
| Dell PowerEdge R730 Firmware | ||
| All of | ||
| Dell PowerEdge R730xd Firmware | <2.19.0 | |
| Dell PowerEdge R730xd Firmware | ||
| All of | ||
| Dell PowerEdge R630 Firmware | <2.19.0 | |
| Dell PowerEdge R630 | ||
| All of | ||
| Dell PowerEdge C4130 | <2.19.0 | |
| Dell PowerEdge C4130 | ||
| All of | ||
| Dell PowerEdge r930 firmware | <2.14.0 | |
| Dell PowerEdge R930 | ||
| All of | ||
| Dell PowerEdge m630 (PE VRTX) Firmware | <2.19.0 | |
| Dell PowerEdge M630p | ||
| All of | ||
| Dell PowerEdge m630 (PE VRTX) Firmware | <2.19.0 | |
| Dell PowerEdge m630 | ||
| All of | ||
| Dell PowerEdge FC630 | <2.19.0 | |
| Dell PowerEdge FC630 | ||
| All of | ||
| Dell PowerEdge FC430 | <2.19.0 | |
| Dell PowerEdge FC430 | ||
| All of | ||
| Dell PowerEdge m830 (pe vrtx) firmware | <2.19.0 | |
| Dell M830 | ||
| All of | ||
| Dell PowerEdge m830 (pe vrtx) firmware | <2.19.0 | |
| Dell PowerEdge m830 (PE VRTX) | ||
| All of | ||
| Dell PowerEdge FC830 | <2.19.0 | |
| Dell PowerEdge FC830 | ||
| All of | ||
| Dell PowerEdge t630 firmware | <2.19.0 | |
| Dell PowerEdge T630 | ||
| All of | ||
| Dell PowerEdge r530 firmware | <2.19.0 | |
| Dell PowerEdge R530 | ||
| All of | ||
| Dell PowerEdge R430 Firmware | <2.19.0 | |
| Dell PowerEdge R430 Firmware | ||
| All of | ||
| Dell PowerEdge T430 Firmware | <2.19.0 | |
| Dell PowerEdge T430 Firmware | ||
| All of | ||
| Dell PowerEdge R830 | <1.19.0 | |
| Dell PowerEdge R830 | ||
| All of | ||
| Dell PowerEdge C6320 Firmware | <2.19.0 | |
| Dell PowerEdge C6320 | ||
| All of | ||
| Dell T130 Firmware | <2.20.0 | |
| Dell PowerEdge T130 | ||
| All of | ||
| Dell PowerEdge r230 firmware | <2.20.0 | |
| Dell PowerEdge r230 | ||
| All of | ||
| Dell PowerEdge T330 Firmware | <2.20.0 | |
| Dell PowerEdge T330 Firmware | ||
| All of | ||
| Dell PowerEdge R330 Firmware | <2.20.0 | |
| Dell PowerEdge R330 Firmware | ||
| All of | ||
| Dell emc storage nx3240 firmware | <2.21.2 | |
| Dell emc storage nx3240 | ||
| All of | ||
| Dell emc storage nx3340 firmware | <2.21.2 | |
| Dell emc storage nx3340 | ||
| All of | ||
| Dell Storage Nx3230 Firmware | <2.19.0 | |
| Dell Storage Nx3230 Firmware | ||
| All of | ||
| Dell Storage Nx3330 Firmware | <2.19.0 | |
| Dell Storage Nx3330 Firmware | ||
| All of | ||
| Dell Storage Nx430 Firmware | <2.20.0 | |
| Dell Storage Nx430 Firmware | ||
| All of | ||
| Dell EMC XC Core XC450 Firmware | <1.13.2 | |
| Dell EMC XC Core XC450 Firmware | ||
| All of | ||
| Dell EMC XC Core XC650 Firmware | <1.13.2 | |
| Dell EMC XC650 | ||
| All of | ||
| Dell EMC XC Series XC750 | <1.13.2 | |
| Dell EMC XC Series XC750 | ||
| All of | ||
| Dell EMC XC Core XC750XA | <1.13.2 | |
| Dell EMC XC Core XC750XA | ||
| All of | ||
| Dell EMC XC Core XC6520 Firmware | <1.13.2 | |
| Dell EMC XC Core XC6520 Firmware | ||
| All of | ||
| Dell emc xc core 6420 firmware | <2.21.0 | |
| Dell emc xc core 6420 | ||
| All of | ||
| Dell emc xc core xc640 firmware | <2.21.2 | |
| Dell emc xc core xc640 | ||
| All of | ||
| Dell emc xc core xc740xd firmware | <2.21.2 | |
| Dell emc xc core xc740xd | ||
| All of | ||
| Dell EMC XC Core XC740XD2 Firmware | <2.21.1 | |
| Dell EMC XC Core XC740XD2 Firmware | ||
| All of | ||
| Dell emc xc core xc940 firmware | <2.21.2 | |
| Dell emc xc core xc940 | ||
| All of | ||
| Dell EMC XC Core XCX-R2 | <2.21.1 | |
| Dell EMC XC Core XCX-R2 | ||
| All of | ||
| Dell XC6320 | <2.19.0 | |
| Dell XC6320 Firmware | ||
| All of | ||
| Dell XC430 Firmware | <2.19.0 | |
| Dell XC430 Firmware | ||
| All of | ||
| Dell XC630 Firmware | <2.19.0 | |
| Dell XC630 Firmware | ||
| All of | ||
| Dell XC730 Firmware | <2.19.0 | |
| Dell XC730 Firmware | ||
| All of | ||
| Dell XC730xd Firmware | <2.19.0 | |
| Dell XC730xd Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-0161?
CVE-2024-0161 is classified as a medium severity vulnerability due to the potential for local low privileged attackers to exploit it.
How do I fix CVE-2024-0161?
To fix CVE-2024-0161, update the firmware of affected Dell PowerEdge Servers and Precision Rack Servers to the latest version provided by Dell.
Who is vulnerable to CVE-2024-0161?
CVE-2024-0161 affects various models of Dell PowerEdge Servers and Precision Rack Servers prior to their respective firmware updates.
What does CVE-2024-0161 exploit?
CVE-2024-0161 exploits an improper verification of the SMM communication buffer, which could allow arbitrary writes to SMRAM.
Is CVE-2024-0161 easy to exploit?
CVE-2024-0161 requires local access by a low privileged attacker, making it less likely to be exploited remotely.
- agent/weakness
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell poweredge t360 firmware
- canonical/dell poweredge r360 firmware
- canonical/dell poweredge r650 firmware
- canonical/dell poweredge r650
- canonical/dell poweredge r750 firmware
- canonical/dell poweredge r750
- canonical/dell poweredge r750xa firmware
- canonical/dell poweredge r750xa
- canonical/dell poweredge c6520 firmware
- canonical/dell poweredge c6520
- canonical/dell mx750c firmware
- canonical/dell poweredge mx750c firmware
- canonical/dell poweredge r550 firmware
- canonical/dell poweredge r550
- canonical/dell poweredge r450 firmware
- canonical/dell poweredge r650xs firmware
- canonical/dell poweredge r750xs firmware
- canonical/dell poweredge t550 firmware
- canonical/dell xr11 firmware
- canonical/dell poweredge xr11 firmware
- canonical/dell poweredge xr12 firmware
- canonical/dell poweredge xr4510c firmware
- canonical/dell poweredge xr4520c firmware
- canonical/dell t150 firmware
- canonical/dell poweredge t150
- canonical/dell poweredge t350 firmware
- canonical/dell t350
- canonical/dell poweredge r250 firmware
- canonical/dell poweredge r250
- canonical/dell poweredge r350 firmware
- canonical/dell poweredge r740 firmware
- canonical/dell poweredge r740xd firmware
- canonical/dell poweredge r740xd2
- canonical/dell poweredge r640 firmware
- canonical/dell poweredge r940 firmware
- canonical/dell poweredge r940xa firmware
- canonical/dell poweredge r540 firmware
- canonical/dell poweredge r440 firmware
- canonical/dell poweredge r440
- canonical/dell poweredge t440 firmware
- canonical/dell poweredge xr2 firmware
- canonical/dell poweredge r740xd2 firmware
- canonical/dell poweredge r840 firmware
- canonical/dell poweredge r940xa
- canonical/dell poweredge t640 firmware
- canonical/dell poweredge t640
- canonical/dell poweredge c6420 firmware
- canonical/dell poweredge c6420
- canonical/dell poweredge fc640
- canonical/dell poweredge m640p firmware
- canonical/dell poweredge m640 firmware
- canonical/dell poweredge m640 (pe vrtx) firmware
- canonical/dell poweredge m640
- canonical/dell poweredge mx740c firmware
- canonical/dell poweredge mx740c
- canonical/dell poweredge mx840c firmware
- canonical/dell poweredge mx840c
- canonical/dell poweredge c4140 firmware
- canonical/dell poweredge c4140
- canonical/dell dss 8440 firmware
- canonical/dell poweredge xe2420 firmware
- canonical/dell xe7420 firmware
- canonical/dell poweredge xe7420 firmware
- canonical/dell poweredge xe7440 firmware
- canonical/dell poweredge xe7440
- canonical/dell poweredge r730 firmware
- canonical/dell poweredge r730xd firmware
- canonical/dell poweredge r630 firmware
- canonical/dell poweredge r630
- canonical/dell poweredge c4130
- canonical/dell poweredge r930 firmware
- canonical/dell poweredge r930
- canonical/dell poweredge m630 (pe vrtx) firmware
- canonical/dell poweredge m630p
- canonical/dell poweredge m630
- canonical/dell poweredge fc630
- canonical/dell poweredge fc430
- canonical/dell poweredge m830 (pe vrtx) firmware
- canonical/dell m830
- canonical/dell poweredge m830 (pe vrtx)
- canonical/dell poweredge fc830
- canonical/dell poweredge t630 firmware
- canonical/dell poweredge t630
- canonical/dell poweredge r530 firmware
- canonical/dell poweredge r530
- canonical/dell poweredge r430 firmware
- canonical/dell poweredge t430 firmware
- canonical/dell poweredge r830
- canonical/dell poweredge c6320 firmware
- canonical/dell poweredge c6320
- canonical/dell t130 firmware
- canonical/dell poweredge t130
- canonical/dell poweredge r230 firmware
- canonical/dell poweredge r230
- canonical/dell poweredge t330 firmware
- canonical/dell poweredge r330 firmware
- canonical/dell emc storage nx3240 firmware
- canonical/dell emc storage nx3240
- canonical/dell emc storage nx3340 firmware
- canonical/dell emc storage nx3340
- canonical/dell storage nx3230 firmware
- canonical/dell storage nx3330 firmware
- canonical/dell storage nx430 firmware
- canonical/dell emc xc core xc450 firmware
- canonical/dell emc xc core xc650 firmware
- canonical/dell emc xc650
- canonical/dell emc xc series xc750
- canonical/dell emc xc core xc750xa
- canonical/dell emc xc core xc6520 firmware
- canonical/dell emc xc core 6420 firmware
- canonical/dell emc xc core 6420
- canonical/dell emc xc core xc640 firmware
- canonical/dell emc xc core xc640
- canonical/dell emc xc core xc740xd firmware
- canonical/dell emc xc core xc740xd
- canonical/dell emc xc core xc740xd2 firmware
- canonical/dell emc xc core xc940 firmware
- canonical/dell emc xc core xc940
- canonical/dell emc xc core xcx-r2
- canonical/dell xc6320
- canonical/dell xc6320 firmware
- canonical/dell xc430 firmware
- canonical/dell xc630 firmware
- canonical/dell xc730 firmware
- canonical/dell xc730xd firmware