PT-2024-6022 · Dell+1 · Dell Poweredge Platform+1
Codebreaker1337
·
Published
2024-06-13
·
Updated
2024-12-20
·
CVE-2024-38304
CVSS v3.1
6.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x
Description
The issue is related to an Access of Memory Location After End of Buffer vulnerability in the Dell PowerEdge Platform's 14G Intel BIOS. This vulnerability could be exploited by a low-privileged attacker with local access, potentially leading to information disclosure. The vulnerability is associated with writing data beyond the boundaries of a buffer in memory.
Recommendations
For Dell PowerEdge Platform, 14G Intel BIOS versions prior to 2.22.x, update to version 2.22.x or later to resolve the issue.
At the moment, there is no information about additional mitigation measures for this specific vulnerability.
Fix
Access of Memory Location After End of Buffer
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Poweredge Platform
Intel Bios