CVE-2024-0163: Race Condition
First published: Wed Mar 13 2024(Updated: )
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition vulnerability. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Dell PowerEdge r660 firmware | <2.0.0 | |
| Dell PowerEdge r660 firmware | ||
| All of | ||
| Dell PowerEdge r760 firmware | <2.0.0 | |
| Dell PowerEdge r760 | ||
| All of | ||
| Dell PowerEdge c6620 firmware | <2.0.0 | |
| Dell PowerEdge c6620 firmware | ||
| All of | ||
| Dell PowerEdge mx760c firmware | <2.0.0 | |
| Dell PowerEdge mx760c firmware | ||
| All of | ||
| Dell PowerEdge r860 firmware | <1.8.0 | |
| Dell PowerEdge r860 firmware | ||
| All of | ||
| Dell PowerEdge r960 firmware | <1.8.0 | |
| Dell PowerEdge R960 | ||
| All of | ||
| Dell PowerEdge hs5610 | <2.0.0 | |
| Dell PowerEdge hs5610 | ||
| All of | ||
| Dell PowerEdge hs5620 firmware | <2.0.0 | |
| Dell PowerEdge hs5620 firmware | ||
| All of | ||
| Dell PowerEdge r660xs firmware | <2.0.0 | |
| Dell PowerEdge r660xs | ||
| All of | ||
| Dell PowerEdge R760xs firmware | <2.0.0 | |
| Dell PowerEdge R760xs firmware | ||
| All of | ||
| Dell PowerEdge r760xd2 | <2.0.0 | |
| Dell PowerEdge r760xd2 firmware | ||
| All of | ||
| Dell PowerEdge t560 firmware | <2.0.0 | |
| Dell PowerEdge t560 firmware | ||
| All of | ||
| Dell PowerEdge r760xa firmware | <2.0.0 | |
| Dell PowerEdge r760xa firmware | ||
| All of | ||
| Dell PowerEdge xe9680 firmware | <1.8.0 | |
| Dell PowerEdge xe9680 | ||
| All of | ||
| Dell PowerEdge xr5610 firmware | <1.8.0 | |
| Dell PowerEdge xr5610 firmware | ||
| All of | ||
| Dell PowerEdge xr8610t firmware | <1.8.0 | |
| Dell PowerEdge XR8610T | ||
| All of | ||
| Dell PowerEdge XR8620T Firmware | <1.8.0 | |
| Dell PowerEdge XR8620T Firmware | ||
| All of | ||
| Dell PowerEdge XR7620 Firmware | <1.8.0 | |
| Dell PowerEdge XR7620 Firmware | ||
| All of | ||
| Dell PowerEdge xe8640 | <1.8.0 | |
| Dell PowerEdge xe8640 firmware | ||
| All of | ||
| Dell PowerEdge xe9640 firmware | <1.8.0 | |
| Dell PowerEdge xe9640 firmware | ||
| All of | ||
| Dell PowerEdge r6615 firmware | <1.7.2 | |
| Dell PowerEdge R6615 | ||
| All of | ||
| Dell PowerEdge R7615 Firmware | <1.7.2 | |
| Dell PowerEdge R7615 Firmware | ||
| All of | ||
| Dell PowerEdge r6625 | <1.7.2 | |
| Dell PowerEdge r6625 | ||
| All of | ||
| Dell PowerEdge r7625 firmware | <1.7.2 | |
| Dell PowerEdge r7625 firmware | ||
| All of | ||
| Dell PowerEdge c6615 | <1.2.3 | |
| Dell PowerEdge c6615 firmware | ||
| All of | ||
| Dell PowerEdge r650 firmware | <1.13.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750 Firmware | <1.13.2 | |
| Dell PowerEdge R750 | ||
| All of | ||
| Dell PowerEdge R750XA Firmware | <1.13.2 | |
| Dell PowerEdge R750xa | ||
| All of | ||
| Dell PowerEdge c6520 firmware | <1.13.2 | |
| Dell PowerEdge C6520 | ||
| All of | ||
| Dell MX750c Firmware | <1.13.2 | |
| Dell PowerEdge mx750c firmware | ||
| All of | ||
| Dell PowerEdge r550 firmware | <1.13.2 | |
| Dell PowerEdge R550 | ||
| All of | ||
| Dell PowerEdge R450 Firmware | <1.13.2 | |
| Dell PowerEdge R450 Firmware | ||
| All of | ||
| Dell PowerEdge r650xs firmware | <1.13.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750xs firmware | <1.13.2 | |
| Dell PowerEdge R750xs firmware | ||
| All of | ||
| Dell PowerEdge T550 Firmware | <1.13.2 | |
| Dell PowerEdge t550 firmware | ||
| All of | ||
| Dell XR11 Firmware | <1.13.2 | |
| Dell PowerEdge XR11 Firmware | ||
| All of | ||
| Dell PowerEdge XR12 Firmware | <1.13.2 | |
| Dell PowerEdge XR12 Firmware | ||
| All of | ||
| Dell T150 Firmware | <1.9.1 | |
| Dell PowerEdge t150 | ||
| All of | ||
| Dell PowerEdge T350 Firmware | <1.9.1 | |
| Dell T350 | ||
| All of | ||
| Dell PowerEdge R250 Firmware | <1.9.1 | |
| Dell PowerEdge R250 | ||
| All of | ||
| Dell PowerEdge R350 Firmware | <1.9.1 | |
| Dell PowerEdge R350 Firmware | ||
| All of | ||
| Dell PowerEdge XR4510C Firmware | <1.14.1 | |
| Dell PowerEdge XR4510C Firmware | ||
| All of | ||
| Dell PowerEdge xr4520c firmware | <1.14.1 | |
| Dell PowerEdge xr4520c firmware | ||
| All of | ||
| Dell PowerEdge r6515 firmware | <2.14.1 | |
| Dell PowerEdge r6515 firmware | ||
| All of | ||
| Dell PowerEdge r6525 firmware | <2.14.1 | |
| Dell PowerEdge r6525 firmware | ||
| All of | ||
| Dell PowerEdge r7515 firmware | <2.14.1 | |
| Dell PowerEdge r7515 | ||
| All of | ||
| Dell PowerEdge r7525 firmware | <2.14.1 | |
| Dell PowerEdge r7525 firmware | ||
| All of | ||
| Dell PowerEdge c6525 | <2.14.1 | |
| Dell PowerEdge c6525 firmware | ||
| All of | ||
| Dell XE8545 Firmware | <2.14.1 | |
| Dell PowerEdge xe8545 firmware | ||
| All of | ||
| Dell XC Series XC660 | <2.0.0 | |
| Dell XC Series XC660 | ||
| All of | ||
| Dell XC Core XC760 | <2.0.0 | |
| Dell XC Core XC760 Firmware | ||
| All of | ||
| Dell XC Core XC7625 Firmware | <1.7.2 | |
| Dell XC Core XC7625 Firmware | ||
| All of | ||
| Dell EMC XC Core XC450 Firmware | <1.13.2 | |
| Dell EMC XC Core XC450 Firmware | ||
| All of | ||
| Dell EMC XC Core XC650 Firmware | <1.13.2 | |
| Dell EMC XC650 | ||
| All of | ||
| Dell EMC XC Series XC750 | <1.13.2 | |
| Dell EMC XC Series XC750 | ||
| All of | ||
| Dell EMC XC Core XC750XA | <1.13.2 | |
| Dell EMC XC Core XC750XA | ||
| All of | ||
| Dell EMC XC Core XC6520 Firmware | <1.13.2 | |
| Dell EMC XC Core XC6520 Firmware | ||
| All of | ||
| Dell EMC XC Core XC7525 Firmware | <2.14.1 | |
| Dell EMC XC Core XC7525 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-0163?
The severity of CVE-2024-0163 is categorized as medium.
How do I fix CVE-2024-0163?
To fix CVE-2024-0163, users should update to the latest firmware version provided by Dell for their affected PowerEdge Server models.
Which Dell products are affected by CVE-2024-0163?
CVE-2024-0163 affects various Dell PowerEdge Server BIOS including models R660, R760, C6620, MX760C, and others.
What type of vulnerability is CVE-2024-0163?
CVE-2024-0163 is a time-of-check-time-of-use (TOCTOU) race condition vulnerability.
Who can exploit CVE-2024-0163?
CVE-2024-0163 can potentially be exploited by a local low privileged attacker to gain access to unauthorized resources.
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/type
- agent/description
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/last-modified-date
- agent/severity
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- vendor/dell
- canonical/dell poweredge r660 firmware
- canonical/dell poweredge r760 firmware
- canonical/dell poweredge r760
- canonical/dell poweredge c6620 firmware
- canonical/dell poweredge mx760c firmware
- canonical/dell poweredge r860 firmware
- canonical/dell poweredge r960 firmware
- canonical/dell poweredge r960
- canonical/dell poweredge hs5610
- canonical/dell poweredge hs5620 firmware
- canonical/dell poweredge r660xs firmware
- canonical/dell poweredge r660xs
- canonical/dell poweredge r760xs firmware
- canonical/dell poweredge r760xd2
- canonical/dell poweredge r760xd2 firmware
- canonical/dell poweredge t560 firmware
- canonical/dell poweredge r760xa firmware
- canonical/dell poweredge xe9680 firmware
- canonical/dell poweredge xe9680
- canonical/dell poweredge xr5610 firmware
- canonical/dell poweredge xr8610t firmware
- canonical/dell poweredge xr8610t
- canonical/dell poweredge xr8620t firmware
- canonical/dell poweredge xr7620 firmware
- canonical/dell poweredge xe8640
- canonical/dell poweredge xe8640 firmware
- canonical/dell poweredge xe9640 firmware
- canonical/dell poweredge r6615 firmware
- canonical/dell poweredge r6615
- canonical/dell poweredge r7615 firmware
- canonical/dell poweredge r6625
- canonical/dell poweredge r7625 firmware
- canonical/dell poweredge c6615
- canonical/dell poweredge c6615 firmware
- canonical/dell poweredge r650 firmware
- canonical/dell poweredge r650
- canonical/dell poweredge r750 firmware
- canonical/dell poweredge r750
- canonical/dell poweredge r750xa firmware
- canonical/dell poweredge r750xa
- canonical/dell poweredge c6520 firmware
- canonical/dell poweredge c6520
- canonical/dell mx750c firmware
- canonical/dell poweredge mx750c firmware
- canonical/dell poweredge r550 firmware
- canonical/dell poweredge r550
- canonical/dell poweredge r450 firmware
- canonical/dell poweredge r650xs firmware
- canonical/dell poweredge r750xs firmware
- canonical/dell poweredge t550 firmware
- canonical/dell xr11 firmware
- canonical/dell poweredge xr11 firmware
- canonical/dell poweredge xr12 firmware
- canonical/dell t150 firmware
- canonical/dell poweredge t150
- canonical/dell poweredge t350 firmware
- canonical/dell t350
- canonical/dell poweredge r250 firmware
- canonical/dell poweredge r250
- canonical/dell poweredge r350 firmware
- canonical/dell poweredge xr4510c firmware
- canonical/dell poweredge xr4520c firmware
- canonical/dell poweredge r6515 firmware
- canonical/dell poweredge r6525 firmware
- canonical/dell poweredge r7515 firmware
- canonical/dell poweredge r7515
- canonical/dell poweredge r7525 firmware
- canonical/dell poweredge c6525
- canonical/dell poweredge c6525 firmware
- canonical/dell xe8545 firmware
- canonical/dell poweredge xe8545 firmware
- canonical/dell xc series xc660
- canonical/dell xc core xc760
- canonical/dell xc core xc760 firmware
- canonical/dell xc core xc7625 firmware
- canonical/dell emc xc core xc450 firmware
- canonical/dell emc xc core xc650 firmware
- canonical/dell emc xc650
- canonical/dell emc xc series xc750
- canonical/dell emc xc core xc750xa
- canonical/dell emc xc core xc6520 firmware
- canonical/dell emc xc core xc7525 firmware