Vulnerability Details CVE-2024-25942
Dell PowerEdge Server BIOS contains an Improper SMM communication buffer verification vulnerability. A physical high privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.1%
CVSS Severity
CVSS v3 Score 4.4
References
- https://www.dell.com/support/kbdoc/en-us/000223210/dsa-2024-104-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000223210/dsa-2024-104-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability
Products affected by CVE-2024-25942
-
cpe:2.3:h:dell:nx3230:-
-
cpe:2.3:h:dell:nx3330:-
-
cpe:2.3:h:dell:poweredge_c4130:-
-
cpe:2.3:h:dell:poweredge_c6320:-
-
cpe:2.3:h:dell:poweredge_fc430:-
-
cpe:2.3:h:dell:poweredge_fc630:-
-
cpe:2.3:h:dell:poweredge_fc830:-
-
cpe:2.3:h:dell:poweredge_m630:-
-
cpe:2.3:h:dell:poweredge_m630_(pe_vrtx):-
-
cpe:2.3:h:dell:poweredge_m830:-
-
cpe:2.3:h:dell:poweredge_m830_(pe_vrtx):-
-
cpe:2.3:h:dell:poweredge_r430:-
-
cpe:2.3:h:dell:poweredge_r530:-
-
cpe:2.3:h:dell:poweredge_r630:-
-
cpe:2.3:h:dell:poweredge_r730:-
-
cpe:2.3:h:dell:poweredge_r730xd:-
-
cpe:2.3:h:dell:poweredge_r830:-
-
cpe:2.3:h:dell:poweredge_r930:-
-
cpe:2.3:h:dell:poweredge_t430:-
-
cpe:2.3:h:dell:poweredge_t630:-
-
cpe:2.3:h:dell:xc430:-
-
cpe:2.3:h:dell:xc630:-
-
cpe:2.3:h:dell:xc6320:-
-
cpe:2.3:h:dell:xc730:-
-
cpe:2.3:h:dell:xc730xd:-
-
cpe:2.3:o:dell:nx3230_firmware:-
-
cpe:2.3:o:dell:nx3330_firmware:-
-
cpe:2.3:o:dell:poweredge_c4130_firmware:-
-
cpe:2.3:o:dell:poweredge_c6320_firmware:-
-
cpe:2.3:o:dell:poweredge_fc430_firmware:-
-
cpe:2.3:o:dell:poweredge_fc630_firmware:-
-
cpe:2.3:o:dell:poweredge_fc830_firmware:-
-
cpe:2.3:o:dell:poweredge_m630_(pe_vrtx)_firmware:-
-
cpe:2.3:o:dell:poweredge_m630_firmware:-
-
cpe:2.3:o:dell:poweredge_m830_(pe_vrtx)_firmware:-
-
cpe:2.3:o:dell:poweredge_m830_firmware:-
-
cpe:2.3:o:dell:poweredge_r430_firmware:-
-
cpe:2.3:o:dell:poweredge_r530_firmware:-
-
cpe:2.3:o:dell:poweredge_r630_firmware:-
-
cpe:2.3:o:dell:poweredge_r730_firmware:-
-
cpe:2.3:o:dell:poweredge_r730xd_firmware:-
-
cpe:2.3:o:dell:poweredge_r830_firmware:-
-
cpe:2.3:o:dell:poweredge_r930_firmware:-
-
cpe:2.3:o:dell:poweredge_t430_firmware:-
-
cpe:2.3:o:dell:poweredge_t630_firmware:-
-
cpe:2.3:o:dell:xc430_firmware:-
-
cpe:2.3:o:dell:xc630_firmware:-
-
cpe:2.3:o:dell:xc6320_firmware:-
-
cpe:2.3:o:dell:xc730_firmware:-
-
cpe:2.3:o:dell:xc730xd_firmware:-