Описание
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
Затрагиваемое ПО
Dell Alienware area 51m r2 firmwareDell Alienware area 51m r2Dell Alienware aurora r11 firmwareDell Alienware aurora r11Dell Alienware aurora r12 firmwareDell Alienware aurora r12Dell Alienware aurora r13 firmwareDell Alienware aurora r13Dell Alienware aurora r15 firmwareDell Alienware aurora r15Dell Alienware aurora r15 amd firmwareDell Alienware aurora r15 amdDell Alienware aurora ryzen edition r14 firmwareDell Alienware aurora ryzen edition r14Dell Alienware m15 r3 firmwareDell Alienware m15 r3Dell Alienware m15 r4 firmwareDell Alienware m15 r4Dell Alienware m17 r3 firmwareDell Alienware m17 r3Dell Alienware m17 r4 firmwareDell Alienware m17 r4Dell Alienware x14 firmwareDell Alienware x14Dell Alienware x15 r1 firmware
CVSS
| Балл | 7.5 — высокая |
| Вектор | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H |
Источники
https://www.dell.com/support/kbdoc/en-us/000223440/dsa-2024-125https://www.dell.com/support/kbdoc/en-us/000223440/dsa-2024-125