Vulnerability Details CVE-2024-0171
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.1%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2024-0171
-
cpe:2.3:h:dell:poweredge_c6615:-
-
cpe:2.3:h:dell:poweredge_r6615:-
-
cpe:2.3:h:dell:poweredge_r6625:-
-
cpe:2.3:h:dell:poweredge_r7615:-
-
cpe:2.3:h:dell:poweredge_r7625:-
-
cpe:2.3:h:dell:xc_core_xc7625:-
-
cpe:2.3:o:dell:poweredge_c6615_firmware:-
-
cpe:2.3:o:dell:poweredge_c6615_firmware:1.2.3
-
cpe:2.3:o:dell:poweredge_r6615_firmware:-
-
cpe:2.3:o:dell:poweredge_r6615_firmware:1.4.6
-
cpe:2.3:o:dell:poweredge_r6615_firmware:1.7.2
-
cpe:2.3:o:dell:poweredge_r6625_firmware:-
-
cpe:2.3:o:dell:poweredge_r6625_firmware:1.4.6
-
cpe:2.3:o:dell:poweredge_r6625_firmware:1.7.2
-
cpe:2.3:o:dell:poweredge_r7615_firmware:-
-
cpe:2.3:o:dell:poweredge_r7615_firmware:1.4.6
-
cpe:2.3:o:dell:poweredge_r7615_firmware:1.7.2
-
cpe:2.3:o:dell:poweredge_r7625_firmware:-
-
cpe:2.3:o:dell:poweredge_r7625_firmware:1.4.6
-
cpe:2.3:o:dell:poweredge_r7625_firmware:1.7.2
-
cpe:2.3:o:dell:xc_core_xc7625_firmware:-
-
cpe:2.3:o:dell:xc_core_xc7625_firmware:1.7.2