Dell Client BIOS Vulnerability Could Lead to Platform Denial of Service
CVE-2024-28970
4.4MEDIUM
Summary
Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial of service.
Affected Version(s)
CPG BIOS < 1.32.0
CPG BIOS < 1.6.0
CPG BIOS < 1.4.0
CVSS V3.1
Score:
4.4
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Dell would like to thank Maxim Suhanov for reporting this issue