CVE-2024-0172
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD
Description
Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.
Affected (93)
Products: Dell: Poweredge R660 Firmware, Poweredge R760 Firmware, Poweredge C6620 Firmware, Poweredge Mx760c Firmware, Poweredge R860 Firmware, Poweredge R960 Firmware, Poweredge Hs5610 Firmware, Poweredge Hs5620 Firmware, Poweredge R660xs Firmware, Poweredge R760xs Firmware, Poweredge R760xd2 Firmware, Poweredge T560 Firmware, Poweredge R760xa Firmware, Poweredge Xe9680 Firmware, Poweredge Xr5610 Firmware, Poweredge Xr8610t Firmware, Poweredge Xr8620t Firmware, Poweredge Xr7620 Firmware, Poweredge Xe8640 Firmware, Poweredge Xe9640 Firmware, Poweredge R6615 Firmware, Poweredge R7615 Firmware, Poweredge R6625 Firmware, Poweredge R7625 Firmware, Poweredge R650 Firmware, Poweredge R750 Firmware, Poweredge R750xa Firmware, Poweredge C6520 Firmware, Poweredge Mx750c Firmware, Poweredge R550 Firmware, Poweredge R450 Firmware, Poweredge R650xs Firmware, Poweredge R750xs Firmware, Poweredge T550 Firmware, Poweredge Xr11 Firmware, Poweredge Xr12 Firmware, Poweredge T150 Firmware, Poweredge T350 Firmware, Poweredge R250 Firmware, Poweredge R350 Firmware, Poweredge Xr4510c Firmware, Poweredge Xr4520c Firmware, Poweredge R6515 Firmware, Poweredge R6525 Firmware, Poweredge R7515 Firmware, Poweredge R7525 Firmware, Poweredge C6525 Firmware, Poweredge Xe8545 Firmware, Poweredge R740 Firmware, Poweredge R740xd Firmware, Poweredge R640 Firmware, Poweredge R940 Firmware, Poweredge R540 Firmware, Poweredge R440 Firmware, Poweredge T440 Firmware, Poweredge Xr2 Firmware, Poweredge R740xd2 Firmware, Poweredge R840 Firmware, Poweredge R940xa Firmware, Poweredge T640 Firmware, Poweredge C6420 Firmware, Poweredge Fc640 Firmware, Poweredge M640 Firmware, Poweredge M640 (pe Vrtx) Firmware, Poweredge Mx740c Firmware, Poweredge Mx840c Firmware, Poweredge C4140 Firmware, Dss 8440 Firmware, Poweredge Xe2420 Firmware, Poweredge Xe7420 Firmware, Poweredge Xe7440 Firmware, Poweredge T140 Firmware, Poweredge T340 Firmware, Poweredge R240 Firmware, Poweredge R340 Firmware, Poweredge R6415 Firmware, Poweredge R7415 Firmware, Poweredge R7425 Firmware, Emc Storage Nx3240 Firmware, Emc Storage Nx3340 Firmware, Nx440 Firmware, Emc Xc Core Xc450 Firmware, Emc Xc Core Xc650 Firmware, Emc Xc Core Xc750 Firmware, Emc Xc Core Xc750xa Firmware, Emc Xc Core Xc6520 Firmware, Emc Xc Core 6420 System Firmware, Emc Xc Core Xc640 System Firmware, Emc Xc Core Xc740xd System Firmware, Emc Xc Core Xc740xd2 Firmware, Emc Xc Core Xc940 System Firmware, Emc Xc Core Xcxr2 Firmware, Emc Xc Core Xc7525 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R660 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R760 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge C6620 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Mx760c | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R860 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R960 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Hs5610 | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Hs5620 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R660xs | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R760xs | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R760xd2 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T560 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R760xa | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe9680 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr5610 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr8610t | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr8620t | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.5.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr7620 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.2.5 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe8640 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.3.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe9640 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R6615 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7615 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R6625 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.4.6 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7625 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R650 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R750 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R750xa | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge C6520 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Mx750c | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R550 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R450 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R650xs | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R750xs | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T550 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr11 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr12 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T150 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T350 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R250 | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.7.3 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R350 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr4510c | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.12.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr4520c | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R6515 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R6525 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7515 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7525 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge C6525 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe8545 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R740 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R740xd | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R640 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R940 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R540 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R440 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T440 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xr2 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R740xd2 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R840 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R940xa | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T640 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge C6420 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Fc640 | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge M640 | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge M640 (pe Vrtx) | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Mx740c | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Mx840c | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge C4140 | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Dss 8440 | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe2420 | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe7420 | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge Xe7440 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.14.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T140 | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.14.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge T340 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.14.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R240 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.14.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R340 | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R6415 | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7415 | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.20.0 |
| Running on/with | Platform Versions |
|---|---|
Dell Poweredge R7425 | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Storage Nx3240 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Storage Nx3340 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.14.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Nx440 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc450 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc650 | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc750 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc750xa | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.11.2 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc6520 | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core 6420 System | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc640 System | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc740xd System | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc740xd2 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc940 System | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.19.1 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xcxr2 | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.12.4 |
| Running on/with | Platform Versions |
|---|---|
Dell Emc Xc Core Xc7525 | All versions |
References (2)
Source: security_alert@emc.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.