CVE-2024-0172
First published: Wed Apr 03 2024(Updated: )
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell PowerEdge Server BIOS | ||
| Dell Precision Rack BIOS | ||
| All of | ||
| Dell PowerEdge r660 firmware | <1.5.6 | |
| Dell PowerEdge r660 firmware | ||
| All of | ||
| Dell PowerEdge r760 firmware | <1.5.6 | |
| Dell PowerEdge r760 | ||
| All of | ||
| Dell PowerEdge c6620 firmware | <1.5.6 | |
| Dell PowerEdge c6620 firmware | ||
| All of | ||
| Dell PowerEdge mx760c firmware | <1.5.6 | |
| Dell PowerEdge mx760c firmware | ||
| All of | ||
| Dell PowerEdge r860 firmware | <1.5.6 | |
| Dell PowerEdge r860 firmware | ||
| All of | ||
| Dell PowerEdge r960 firmware | <1.5.6 | |
| Dell PowerEdge R960 | ||
| All of | ||
| Dell PowerEdge hs5610 | <1.5.6 | |
| Dell PowerEdge hs5610 | ||
| All of | ||
| Dell PowerEdge hs5620 firmware | <1.5.6 | |
| Dell PowerEdge hs5620 firmware | ||
| All of | ||
| Dell PowerEdge r660xs firmware | <1.5.6 | |
| Dell PowerEdge r660xs | ||
| All of | ||
| Dell PowerEdge R760xs firmware | <1.5.6 | |
| Dell PowerEdge R760xs firmware | ||
| All of | ||
| Dell PowerEdge r760xd2 | <1.5.6 | |
| Dell PowerEdge r760xd2 firmware | ||
| All of | ||
| Dell PowerEdge t560 firmware | <1.5.6 | |
| Dell PowerEdge t560 firmware | ||
| All of | ||
| Dell PowerEdge r760xa firmware | <1.1.3 | |
| Dell PowerEdge r760xa firmware | ||
| All of | ||
| Dell PowerEdge xe9680 firmware | <1.1.3 | |
| Dell PowerEdge xe9680 | ||
| All of | ||
| Dell PowerEdge xr5610 firmware | <1.1.4 | |
| Dell PowerEdge xr5610 firmware | ||
| All of | ||
| Dell PowerEdge xr8610t firmware | <1.1.3 | |
| Dell PowerEdge XR8610T | ||
| All of | ||
| Dell PowerEdge XR8620T Firmware | <1.1.3 | |
| Dell PowerEdge XR8620T Firmware | ||
| All of | ||
| Dell PowerEdge XR7620 Firmware | <1.5.6 | |
| Dell PowerEdge XR7620 Firmware | ||
| All of | ||
| Dell PowerEdge xe8640 | <1.2.5 | |
| Dell PowerEdge xe8640 firmware | ||
| All of | ||
| Dell PowerEdge xe9640 firmware | <1.3.6 | |
| Dell PowerEdge xe9640 firmware | ||
| All of | ||
| Dell PowerEdge r6615 firmware | <1.4.6 | |
| Dell PowerEdge R6615 | ||
| All of | ||
| Dell PowerEdge R7615 Firmware | <1.4.6 | |
| Dell PowerEdge R7615 Firmware | ||
| All of | ||
| Dell PowerEdge r6625 | <1.4.6 | |
| Dell PowerEdge r6625 | ||
| All of | ||
| Dell PowerEdge r7625 firmware | <1.4.6 | |
| Dell PowerEdge r7625 firmware | ||
| All of | ||
| Dell PowerEdge r650 firmware | <1.11.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750 Firmware | <1.11.2 | |
| Dell PowerEdge R750 | ||
| All of | ||
| Dell PowerEdge R750XA Firmware | <1.11.2 | |
| Dell PowerEdge R750xa | ||
| All of | ||
| Dell PowerEdge c6520 firmware | <1.11.2 | |
| Dell PowerEdge C6520 | ||
| All of | ||
| Dell MX750c Firmware | <1.11.2 | |
| Dell PowerEdge mx750c firmware | ||
| All of | ||
| Dell PowerEdge r550 firmware | <1.11.2 | |
| Dell PowerEdge R550 | ||
| All of | ||
| Dell PowerEdge R450 Firmware | <1.11.2 | |
| Dell PowerEdge R450 Firmware | ||
| All of | ||
| Dell PowerEdge r650xs firmware | <1.11.2 | |
| Dell PowerEdge R650 | ||
| All of | ||
| Dell PowerEdge R750xs firmware | <1.11.2 | |
| Dell PowerEdge R750xs firmware | ||
| All of | ||
| Dell PowerEdge T550 Firmware | <1.11.2 | |
| Dell PowerEdge t550 firmware | ||
| All of | ||
| Dell XR11 Firmware | <1.11.2 | |
| Dell PowerEdge XR11 Firmware | ||
| All of | ||
| Dell PowerEdge XR12 Firmware | <1.11.2 | |
| Dell PowerEdge XR12 Firmware | ||
| All of | ||
| Dell T150 Firmware | <1.7.3 | |
| Dell PowerEdge t150 | ||
| All of | ||
| Dell PowerEdge T350 Firmware | <1.7.3 | |
| Dell T350 | ||
| All of | ||
| Dell PowerEdge R250 Firmware | <1.7.3 | |
| Dell PowerEdge R250 | ||
| All of | ||
| Dell PowerEdge R350 Firmware | <1.7.3 | |
| Dell PowerEdge R350 Firmware | ||
| All of | ||
| Dell PowerEdge XR4510C Firmware | <1.12.1 | |
| Dell PowerEdge XR4510C Firmware | ||
| All of | ||
| Dell PowerEdge xr4520c firmware | <1.12.1 | |
| Dell PowerEdge xr4520c firmware | ||
| All of | ||
| Dell PowerEdge r6515 firmware | <2.12.4 | |
| Dell PowerEdge r6515 firmware | ||
| All of | ||
| Dell PowerEdge r6525 firmware | <2.12.4 | |
| Dell PowerEdge r6525 firmware | ||
| All of | ||
| Dell PowerEdge r7515 firmware | <2.12.4 | |
| Dell PowerEdge r7515 | ||
| All of | ||
| Dell PowerEdge r7525 firmware | <2.12.4 | |
| Dell PowerEdge r7525 firmware | ||
| All of | ||
| Dell PowerEdge c6525 | <2.12.4 | |
| Dell PowerEdge c6525 firmware | ||
| All of | ||
| Dell XE8545 Firmware | <2.12.4 | |
| Dell PowerEdge xe8545 firmware | ||
| All of | ||
| Dell PowerEdge R740 Firmware | <2.19.1 | |
| Dell PowerEdge R740 Firmware | ||
| All of | ||
| Dell PowerEdge R740xd Firmware | <2.19.1 | |
| Dell PowerEdge R740xd2 | ||
| All of | ||
| Dell PowerEdge R640 Firmware | <2.19.1 | |
| Dell PowerEdge R640 Firmware | ||
| All of | ||
| Dell PowerEdge r940 firmware | <2.19.1 | |
| Dell PowerEdge R940xa Firmware | ||
| All of | ||
| Dell PowerEdge R540 Firmware | <2.19.1 | |
| Dell PowerEdge R540 Firmware | ||
| All of | ||
| Dell PowerEdge r440 firmware | <2.19.1 | |
| Dell PowerEdge R440 | ||
| All of | ||
| Dell PowerEdge T440 Firmware | <2.19.1 | |
| Dell PowerEdge T440 Firmware | ||
| All of | ||
| Dell PowerEdge XR2 Firmware | <2.19.1 | |
| Dell PowerEdge XR2 Firmware | ||
| All of | ||
| Dell PowerEdge R740xd2 Firmware | <2.19.1 | |
| Dell PowerEdge R740xd2 | ||
| All of | ||
| Dell PowerEdge R840 Firmware | <2.19.1 | |
| Dell PowerEdge R840 Firmware | ||
| All of | ||
| Dell PowerEdge R940xa | <2.19.1 | |
| Dell PowerEdge R940xa | ||
| All of | ||
| Dell PowerEdge T640 Firmware | <2.19.1 | |
| Dell PowerEdge T640 | ||
| All of | ||
| Dell PowerEdge c6420 firmware | <2.19.1 | |
| Dell PowerEdge C6420 | ||
| All of | ||
| Dell PowerEdge FC640 | <2.19.1 | |
| Dell PowerEdge FC640 | ||
| All of | ||
| Dell PowerEdge m640p Firmware | <2.19.1 | |
| Dell PowerEdge m640 Firmware | ||
| All of | ||
| Dell PowerEdge m640 (PE VRTX) Firmware | <2.19.1 | |
| Dell PowerEdge m640 | ||
| All of | ||
| Dell PowerEdge MX740c firmware | <2.19.1 | |
| Dell PowerEdge MX740c | ||
| All of | ||
| Dell PowerEdge mx840c firmware | <2.19.1 | |
| Dell PowerEdge MX840c | ||
| All of | ||
| Dell PowerEdge c4140 firmware | <2.19.1 | |
| Dell PowerEdge c4140 | ||
| All of | ||
| Dell DSS 8440 Firmware | <2.19.0 | |
| Dell DSS 8440 Firmware | ||
| All of | ||
| Dell PowerEdge xe2420 firmware | <2.19.0 | |
| Dell PowerEdge XE2420 Firmware | ||
| All of | ||
| Dell XE7420 Firmware | <2.19.0 | |
| Dell PowerEdge xe7420 firmware | ||
| All of | ||
| Dell PowerEdge xe7440 firmware | <2.19.0 | |
| Dell PowerEdge xe7440 | ||
| All of | ||
| Dell PowerEdge T140 Firmware | <2.14.1 | |
| Dell PowerEdge T140 Firmware | ||
| All of | ||
| Dell T340 Firmware | <2.14.1 | |
| Dell PowerEdge T340 Firmware | ||
| All of | ||
| Dell PowerEdge R240 Firmware | <2.14.1 | |
| Dell PowerEdge R240 Firmware | ||
| All of | ||
| Dell PowerEdge R340 Firmware | <2.14.1 | |
| Dell PowerEdge R340 Firmware | ||
| All of | ||
| Dell PowerEdge r6415 firmware | <1.20.0 | |
| Dell PowerEdge R6415 | ||
| All of | ||
| Dell PowerEdge r7415 firmware | <1.20.0 | |
| Dell PowerEdge r7415 firmware | ||
| All of | ||
| Dell PowerEdge r7425 firmware | <1.20.0 | |
| Dell PowerEdge r7425 firmware | ||
| All of | ||
| Dell emc storage nx3240 firmware | <2.19.1 | |
| Dell emc storage nx3240 | ||
| All of | ||
| Dell emc storage nx3340 firmware | <2.19.1 | |
| Dell emc storage nx3340 | ||
| All of | ||
| Dell EMC NX440 Firmware | <2.14.1 | |
| Dell nx440 firmware | ||
| All of | ||
| Dell EMC XC Core XC450 Firmware | <1.11.2 | |
| Dell EMC XC Core XC450 Firmware | ||
| All of | ||
| Dell EMC XC Core XC650 Firmware | <1.11.2 | |
| Dell EMC XC650 | ||
| All of | ||
| Dell EMC XC Series XC750 | <1.11.2 | |
| Dell EMC XC Series XC750 | ||
| All of | ||
| Dell EMC XC Core XC750XA | <1.11.2 | |
| Dell EMC XC Core XC750XA | ||
| All of | ||
| Dell EMC XC Core XC6520 Firmware | <1.11.2 | |
| Dell EMC XC Core XC6520 Firmware | ||
| All of | ||
| Dell EMC XC Core 6420 System Firmware | <2.19.1 | |
| Dell EMC XC Core 6420 System | ||
| All of | ||
| Dell EMC XC Core XC640 System | <2.19.1 | |
| Dell EMC XC Core XC640 System | ||
| All of | ||
| Dell EMC XC Core XC740XD System | <2.19.1 | |
| Dell EMC XC Core XC740XD System | ||
| All of | ||
| Dell EMC XC Core XC740XD2 Firmware | <2.19.1 | |
| Dell EMC XC Core XC740XD2 Firmware | ||
| All of | ||
| Dell EMC XC Core XC940 System | <2.19.1 | |
| Dell EMC XC Core XC940 System | ||
| All of | ||
| Dell EMC XC Core XCX-R2 | <2.19.1 | |
| Dell EMC XC Core XCX-R2 | ||
| All of | ||
| Dell EMC XC Core XC7525 Firmware | <2.12.4 | |
| Dell EMC XC Core XC7525 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-0172?
CVE-2024-0172 is classified as a high-severity vulnerability due to its potential for privilege escalation by unauthenticated local attackers.
How do I fix CVE-2024-0172?
To fix CVE-2024-0172, you should update the BIOS of affected Dell PowerEdge and Precision Rack servers to the latest version provided by Dell.
Which systems are affected by CVE-2024-0172?
CVE-2024-0172 affects several models of Dell PowerEdge Server BIOS and Dell Precision Rack BIOS.
What could an attacker achieve by exploiting CVE-2024-0172?
An attacker exploiting CVE-2024-0172 could achieve unauthorized privilege escalation, allowing them to execute unauthorized actions on the server.
Are there any workarounds for CVE-2024-0172 until a patch is applied?
Currently, there are no recommended workarounds for CVE-2024-0172, so applying the available patch is essential.
- agent/weakness
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- vendor/dell
- canonical/dell poweredge server bios
- canonical/dell precision rack bios
- canonical/dell poweredge r660 firmware
- canonical/dell poweredge r760 firmware
- canonical/dell poweredge r760
- canonical/dell poweredge c6620 firmware
- canonical/dell poweredge mx760c firmware
- canonical/dell poweredge r860 firmware
- canonical/dell poweredge r960 firmware
- canonical/dell poweredge r960
- canonical/dell poweredge hs5610
- canonical/dell poweredge hs5620 firmware
- canonical/dell poweredge r660xs firmware
- canonical/dell poweredge r660xs
- canonical/dell poweredge r760xs firmware
- canonical/dell poweredge r760xd2
- canonical/dell poweredge r760xd2 firmware
- canonical/dell poweredge t560 firmware
- canonical/dell poweredge r760xa firmware
- canonical/dell poweredge xe9680 firmware
- canonical/dell poweredge xe9680
- canonical/dell poweredge xr5610 firmware
- canonical/dell poweredge xr8610t firmware
- canonical/dell poweredge xr8610t
- canonical/dell poweredge xr8620t firmware
- canonical/dell poweredge xr7620 firmware
- canonical/dell poweredge xe8640
- canonical/dell poweredge xe8640 firmware
- canonical/dell poweredge xe9640 firmware
- canonical/dell poweredge r6615 firmware
- canonical/dell poweredge r6615
- canonical/dell poweredge r7615 firmware
- canonical/dell poweredge r6625
- canonical/dell poweredge r7625 firmware
- canonical/dell poweredge r650 firmware
- canonical/dell poweredge r650
- canonical/dell poweredge r750 firmware
- canonical/dell poweredge r750
- canonical/dell poweredge r750xa firmware
- canonical/dell poweredge r750xa
- canonical/dell poweredge c6520 firmware
- canonical/dell poweredge c6520
- canonical/dell mx750c firmware
- canonical/dell poweredge mx750c firmware
- canonical/dell poweredge r550 firmware
- canonical/dell poweredge r550
- canonical/dell poweredge r450 firmware
- canonical/dell poweredge r650xs firmware
- canonical/dell poweredge r750xs firmware
- canonical/dell poweredge t550 firmware
- canonical/dell xr11 firmware
- canonical/dell poweredge xr11 firmware
- canonical/dell poweredge xr12 firmware
- canonical/dell t150 firmware
- canonical/dell poweredge t150
- canonical/dell poweredge t350 firmware
- canonical/dell t350
- canonical/dell poweredge r250 firmware
- canonical/dell poweredge r250
- canonical/dell poweredge r350 firmware
- canonical/dell poweredge xr4510c firmware
- canonical/dell poweredge xr4520c firmware
- canonical/dell poweredge r6515 firmware
- canonical/dell poweredge r6525 firmware
- canonical/dell poweredge r7515 firmware
- canonical/dell poweredge r7515
- canonical/dell poweredge r7525 firmware
- canonical/dell poweredge c6525
- canonical/dell poweredge c6525 firmware
- canonical/dell xe8545 firmware
- canonical/dell poweredge xe8545 firmware
- canonical/dell poweredge r740 firmware
- canonical/dell poweredge r740xd firmware
- canonical/dell poweredge r740xd2
- canonical/dell poweredge r640 firmware
- canonical/dell poweredge r940 firmware
- canonical/dell poweredge r940xa firmware
- canonical/dell poweredge r540 firmware
- canonical/dell poweredge r440 firmware
- canonical/dell poweredge r440
- canonical/dell poweredge t440 firmware
- canonical/dell poweredge xr2 firmware
- canonical/dell poweredge r740xd2 firmware
- canonical/dell poweredge r840 firmware
- canonical/dell poweredge r940xa
- canonical/dell poweredge t640 firmware
- canonical/dell poweredge t640
- canonical/dell poweredge c6420 firmware
- canonical/dell poweredge c6420
- canonical/dell poweredge fc640
- canonical/dell poweredge m640p firmware
- canonical/dell poweredge m640 firmware
- canonical/dell poweredge m640 (pe vrtx) firmware
- canonical/dell poweredge m640
- canonical/dell poweredge mx740c firmware
- canonical/dell poweredge mx740c
- canonical/dell poweredge mx840c firmware
- canonical/dell poweredge mx840c
- canonical/dell poweredge c4140 firmware
- canonical/dell poweredge c4140
- canonical/dell dss 8440 firmware
- canonical/dell poweredge xe2420 firmware
- canonical/dell xe7420 firmware
- canonical/dell poweredge xe7420 firmware
- canonical/dell poweredge xe7440 firmware
- canonical/dell poweredge xe7440
- canonical/dell poweredge t140 firmware
- canonical/dell t340 firmware
- canonical/dell poweredge t340 firmware
- canonical/dell poweredge r240 firmware
- canonical/dell poweredge r340 firmware
- canonical/dell poweredge r6415 firmware
- canonical/dell poweredge r6415
- canonical/dell poweredge r7415 firmware
- canonical/dell poweredge r7425 firmware
- canonical/dell emc storage nx3240 firmware
- canonical/dell emc storage nx3240
- canonical/dell emc storage nx3340 firmware
- canonical/dell emc storage nx3340
- canonical/dell emc nx440 firmware
- canonical/dell nx440 firmware
- canonical/dell emc xc core xc450 firmware
- canonical/dell emc xc core xc650 firmware
- canonical/dell emc xc650
- canonical/dell emc xc series xc750
- canonical/dell emc xc core xc750xa
- canonical/dell emc xc core xc6520 firmware
- canonical/dell emc xc core 6420 system firmware
- canonical/dell emc xc core 6420 system
- canonical/dell emc xc core xc640 system
- canonical/dell emc xc core xc740xd system
- canonical/dell emc xc core xc740xd2 firmware
- canonical/dell emc xc core xc940 system
- canonical/dell emc xc core xcx-r2
- canonical/dell emc xc core xc7525 firmware