medium
6
CWE
20
Advisory Published
Updated

CVE-2024-38303: Input Validation

First published: Thu Aug 29 2024(Updated: )

Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.

Credit: security_alert@emc.com

Affected SoftwareAffected VersionHow to fix
All of
Dell Emc Xc Core Xcxr2 Firmware<2.22.1
Dell Emc Xc Core Xcxr2
All of
Dell Emc Xc Core Xc940 System Firmware<2.22.2
Dell Emc Xc Core Xc940 System
All of
Dell Emc Xc Core Xc740xd2 Firmware<2.22.1
Dell Emc Xc Core Xc740xd2
All of
Dell Emc Xc Core Xc740xd System Firmware<2.22.2
Dell Emc Xc Core Xc740xd System
All of
Dell Emc Xc Core Xc640 System Firmware<2.22.2
Dell Emc Xc Core Xc640 System
All of
Dell Emc Xc Core 6420 System Firmware<2.22.2
Dell Emc Xc Core 6420 System
All of
Dell Emc Storage Nx3340 Firmware<2.22.2
Dell Emc Storage Nx3340
All of
Dell Emc Storage Nx3240 Firmware<2.22.2
Dell Emc Storage Nx3240
All of
Dell Poweredge Xe7440 Firmware<2.22.2
Dell Poweredge Xe7440
All of
Dell Poweredge Xe7420 Firmware<2.22.2
Dell Poweredge Xe7420
All of
Dell Poweredge Xe2420 Firmware<2.22.2
Dell Poweredge Xe2420
All of
Dell Dss 8440 Firmware<2.22.2
Dell Dss 8440
All of
Dell Poweredge C4140 Firmware<2.22.2
Dell Poweredge C4140
All of
Dell Poweredge Mx840c Firmware<2.22.1
Dell Poweredge Mx840c
All of
Dell Poweredge Mx740c Firmware<2.22.1
Dell Poweredge Mx740c
All of
Dell Poweredge M640 \(for Pe Vrtx\) Firmware<2.22.2
Dell Poweredge M640 \(for Pe Vrtx\)
All of
Dell Poweredge M640 Firmware<2.22.2
Dell Poweredge M640
All of
Dell Poweredge Fc640 Firmware<2.22.2
Dell Poweredge Fc640
All of
Dell Poweredge C6420 Firmware<2.22.2
Dell Poweredge C6420
All of
Dell Poweredge T640 Firmware<2.22.1
Dell Poweredge T640
All of
Dell Poweredge R940xa Firmware<2.22.1
Dell Poweredge R940xa
All of
Dell Poweredge R840 Firmware<2.22.1
Dell Poweredge R840
All of
Dell Poweredge R740xd2 Firmware<2.22.1
Dell Poweredge R740xd2
All of
Dell Poweredge Xr2 Firmware<2.22.1
Dell Poweredge Xr2
All of
Dell Poweredge T440 Firmware<2.22.1
Dell Poweredge T440
All of
Dell Poweredge R440 Firmware<2.22.1
Dell Poweredge R440
All of
Dell Poweredge R540 Firmware<2.22.1
Dell Poweredge R540
All of
Dell Poweredge R940 Firmware<2.22.2
Dell Poweredge R940
All of
Dell Poweredge R640 Firmware<2.22.2
Dell PowerEdge R640
All of
Dell Poweredge R740xd Firmware<2.22.2
Dell Poweredge R740xd
All of
Dell Poweredge R740 Firmware<2.22.2
Dell Poweredge R740

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203