high
7.5
CWE
20
Advisory Published
Updated

CVE-2024-22429: Input Validation

First published: Fri May 17 2024(Updated: )

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution.

Credit: security_alert@emc.com

Affected SoftwareAffected VersionHow to fix
Dell CPG BIOS
All of
Dell Edge Gateway 5000 firmware<1.28.0
Dell Edge Gateway 5000 firmware
All of
Dell Precision 5820 Firmware<2.36.0
Dell Precision 5820 Tower Firmware
All of
ETG3000 FactoryCast HMI Gateway Firmware<1.18.0
Dell Edge Gateway 3000
All of
Dell Embedded Box PC 3000 Firmware<1.24.0
Dell Embedded Box PC 3000 Firmware
All of
Dell Embedded Box PC 5000<1.25.0
Dell Embedded Box PC 5000
All of
Dell Latitude 12 Rugged Extreme 7214<1.46.0
Dell Latitude 12 Rugged Extreme 7214 Firmware
All of
Dell Latitude 3380 Firmware<1.27.0
Dell Latitude 3380 Firmware
All of
Dell Latitude Firmware<1.29.0
Dell Latitude 3180 Firmware
All of
Dell Latitude 3189 Firmware<1.29.0
Dell Latitude 3189 Firmware
All of
Dell Latitude 3190 Firmware<1.34.0
Dell Latitude 3190 2-in-1
All of
Dell Latitude 3190 2-in-1<1.34.0
Dell Latitude 3190 2-in-1 Firmware
All of
Dell Latitude 3300 Firmware<1.28.0
Dell Latitude 3300 Firmware
All of
Dell Latitude 3390 2-in-1 Firmware<1.31.0
Dell Latitude 3390
All of
Dell Latitude 5280 Firmware<1.36.0
Dell Latitude 5280 Firmware
All of
Dell Latitude 5288 Firmware<1.36.0
Dell Latitude 5288 Firmware
All of
Dell Latitude 5290 Firmware<1.35.0
Dell Latitude 5290 2-in-1
All of
Dell Latitude 5290 2-in-1<1.34.0
Dell Latitude 5290 2-in-1 Firmware
All of
Dell Latitude 5400 Firmware<1.30.0
Dell Latitude 5400 Firmware
All of
Dell Latitude 14 Rugged 5414 Firmware<1.46.0
Dell Latitude Rugged 5414
All of
Dell Latitude Rugged 5420 Firmware<1.32.0
Dell Latitude Rugged 5420 Firmware
All of
Dell Latitude Rugged 5424 Firmware<1.32.0
Dell Latitude Rugged 5424 Firmware
All of
Dell Latitude 5480 Firmware<1.36.0
Dell Latitude 5480 Firmware
All of
Dell Latitude 5488 Firmware<1.36.0
Dell Latitude 5488 Firmware
All of
Dell Latitude 5490 Firmware<1.35.0
Dell Latitude 5490 Firmware
All of
Dell Latitude 5580 Firmware<1.36.0
Dell Latitude 5580 firmware
All of
Dell Latitude 5590 Firmware<1.35.0
Dell Latitude 5590 Firmware
All of
Dell Latitude 7212 Rugged Extreme Tablet Firmware<1.50.0
Dell Latitude 7212 Rugged Tablet
All of
Dell Latitude 7280 Firmware<1.37.0
Dell Latitude 7280 Firmware
All of
Dell Latitude 7285 2-in-1 Firmware<1.26.0
Dell Latitude 7285
All of
Dell Latitude 7290 Firmware<1.38.0
Dell Latitude 7290 Firmware
All of
Dell Latitude 7380 Firmware<1.37.0
Dell Latitude 7380 Firmware
All of
Dell Latitude 7390 Firmware<1.38.0
Dell Latitude 7390 Firmware
All of
Dell Latitude 13 7390 2-in-1 Firmware<1.35.0
Dell Latitude 7390
All of
Dell Latitude 7414 Rugged Firmware<1.46.0
Dell Latitude 7414 Rugged Firmware
All of
Dell Latitude 7424 Rugged Extreme Firmware<1.32.0
Dell Latitude 7424 Rugged Extreme Firmware
All of
Dell Latitude 7480 Firmware<1.37.0
Dell Latitude 7480 Firmware
All of
Dell Latitude 7490 Firmware<1.38.0
Dell Latitude 7490 Firmware
All of
Dell OptiPlex 3050 Firmware<1.30.0
Dell OptiPlex 3050 Firmware
All of
Dell OptiPlex 3050 AIO Firmware<1.32.0
Dell OptiPlex 3050 AIO
All of
Dell OptiPlex 5050 Firmware<1.30.0
Dell OptiPlex 5050 Firmware
All of
Dell OptiPlex 7450 AIO Firmware<1.32.0
Dell OptiPlex 7450 AIO Firmware
All of
Dell Precision 3420 Tower Firmware<2.30.0
Dell Precision 3420 Tower Firmware
All of
Dell Precision 3520 Firmware<1.36.0
Dell Precision 3520 Firmware
All of
Dell Precision 3620 Firmware<2.30.0
Dell Precision 3620 Tower
All of
Dell Precision 5520 Firmware<1.38.0
Dell Precision 5520 Firmware
All of
Dell Precision 5530 2-in-1 Firmware<1.31.8
Dell Precision 5530 2-in-1 Firmware
All of
Dell Precision 7520 Firmware<1.36.0
Dell Precision 7520 Firmware
All of
Dell Precision 7720 Firmware<1.36.0
Dell Precision 7720 Firmware
All of
Dell Wyse 5070 Thin Client Firmware<1.31.0
Dell Wyse 5070 Thin Client Firmware
All of
Dell Wyse 7040 Thin Firmware<1.25.0
Dell Wyse 7040

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-22429?

    The severity of CVE-2024-22429 is not explicitly rated but involves a local authenticated malicious user exploiting improper input validation for arbitrary code execution.

  • How do I fix CVE-2024-22429?

    To fix CVE-2024-22429, it is recommended to update the Dell BIOS to the latest version provided by Dell.

  • Who is affected by CVE-2024-22429?

    CVE-2024-22429 affects various Dell BIOS versions across multiple Dell product lines including Latitude, Precision, and OptiPlex.

  • What are the potential impacts of exploiting CVE-2024-22429?

    Exploiting CVE-2024-22429 could lead to arbitrary code execution by an authenticated attacker with admin privileges.

  • When was CVE-2024-22429 disclosed?

    CVE-2024-22429 was disclosed as part of Dell's security advisory in 2024.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203