First published: Thu Jun 13 2024(Updated: )
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Dell Alienware Area 51m R2 Firmware | <1.26.0 | |
Dell Alienware Area 51m R2 Firmware | ||
All of | ||
Dell Alienware Aurora R11 Firmware | <1.0.24 | |
Dell Alienware Aurora R11 | ||
All of | ||
Dell Alienware Aurora R12 | <1.1.25 | |
Dell Alienware Aurora R12 | ||
All of | ||
Dell Alienware Aurora R13 Firmware | <=1.1.19 | |
Dell Alienware Aurora R13 Firmware | ||
All of | ||
Dell Alienware Aurora R15 | <1.1.12 | |
Dell Alienware Aurora R15 Firmware | ||
All of | ||
Dell Alienware Aurora R15 | <1.13.0 | |
Dell Alienware Aurora R15 | ||
All of | ||
Dell Alienware Aurora Ryzen Edition Firmware | <2.18.0 | |
Dell Alienware Aurora Ryzen Edition R14 Firmware | ||
All of | ||
Dell Alienware m15 R3 Firmware | <1.27.0 | |
Dell Alienware 15 R3 | ||
All of | ||
Dell Alienware M15 R4 Firmware | <=1.21.0 | |
Dell Alienware M15 R4 Firmware | ||
All of | ||
Dell Alienware m17 R3 firmware | <1.27.0 | |
Dell Alienware m17 R3 firmware | ||
All of | ||
Dell Alienware m17 R4 Firmware | <=1.21.0 | |
Dell Alienware M17xr4 | ||
All of | ||
Dell Alienware x14 R2 Firmware | <=1.18.0 | |
Dell Alienware x14 R2 | ||
All of | ||
Dell Alienware x15 R1 Firmware | <=1.22.0 | |
Dell Alienware x15 R1 Firmware | ||
All of | ||
Dell Alienware X15 R2 Firmware | <1.20.0 | |
Dell Alienware X15 R2 Firmware | ||
All of | ||
Dell Alienware X17 R1 Firmware | <=1.22.0 | |
Dell Alienware X17 R1 Firmware | ||
All of | ||
Dell Alienware x17 R2 Firmware | <1.20.0 | |
Dell Alienware x17 R2 Firmware | ||
All of | ||
Dell Aurora R16 Firmware | <2.7.0 | |
Dell Aurora R16 Firmware | ||
All of | ||
Dell Inspiron 3510 Firmware | <1.19.0 | |
Dell Inspiron 3510 Firmware | ||
All of | ||
Dell Inspiron 15 352 Firmware | <1.14.0 | |
Dell Inspiron 15 352 | ||
All of | ||
Dell Inspiron 3502 Firmware | <1.16.0 | |
Dell Inspiron 3502 Firmware | ||
All of | ||
Dell XPS 8950 Firmware | <1.19.0 | |
Dell XPS 8950 | ||
All of | ||
Dell XPS 8960 Firmware | <2.6.0 | |
Dell XPS 8960 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-32860 has a high severity rating due to its potential for code execution by a high privileged local attacker.
Fixing CVE-2024-32860 involves updating the affected BIOS firmware to the latest version provided by Dell.
CVE-2024-32860 affects various Dell Alienware systems including Area 51m R2, Aurora models, and several other Alienware and Inspiron products.
Exploiting CVE-2024-32860 can lead to code execution on affected systems, which may allow attackers to manipulate system functions.
Yes, users should refer to Dell's official documentation for the specific firmware versions that mitigate CVE-2024-32860.