ГлавнаяУязвимости → CVE-2024-47238
7.5высокая

CVE-2024-47238

Описание

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution.

Затрагиваемое ПО
Dell Embedded box pc 3000 firmwareDell Embedded box pc 3000Dell Edge gateway 3001 firmwareDell Edge gateway 3001Dell Edge gateway 3002 firmwareDell Edge gateway 3002Dell Edge gateway 3003 firmwareDell Edge gateway 3003Dell Edge gateway 5000 firmwareDell Edge gateway 5000Dell Edge gateway 5100 firmwareDell Edge gateway 5100Dell Edge gateway 3000 firmwareDell Edge gateway 3000Dell Edge gateway 3200 firmwareDell Edge gateway 3200
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.dell.com/support/kbdoc/en-us/000227595/dsa-2024-355