Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
Sign In Create an Account Premier Sign In Dell Financial Services Partner Program Sign In
Contact Us

Your Dell.com Carts

DSA-2024-003: Security Update for Dell PowerEdge Server BIOS for a Time-of-check Time-of-use (TOCTOU) Vulnerability

Summary: Dell PowerEdge Server BIOS remediation is available for a Time-of-check Time-of-use (TOCTOU) vulnerability that could be exploited by malicious users to compromise the affected system.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

Medium

Details

Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2024-0163 Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition vulnerability. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources. 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:LThis hyperlink is taking you to a website outside of Dell Technologies.
Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2024-0163 Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a TOCTOU race condition vulnerability. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources. 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:LThis hyperlink is taking you to a website outside of Dell Technologies.
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product Software/Firmware Affected Versions Remediated Versions Link
PowerEdge R660 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r660/drivers
PowerEdge R760 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760/drivers
PowerEdge C6620 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-c6620/drivers
PowerEdge MX760c BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-mx760c/drivers
PowerEdge R860 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r860/drivers
PowerEdge R960 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r960/drivers
PowerEdge HS5610 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-hs5610/drivers
PowerEdge HS5620 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-hs5620/drivers
PowerEdge R660xs BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r660xs/drivers
PowerEdge R760xs BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xs/drivers
PowerEdge R760xd2 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xd2/drivers
PowerEdge T560 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-t560/drivers
PowerEdge R760xa BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xa/drivers
PowerEdge XE9680 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe9680/drivers
PowerEdge XR5610 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr5610/drivers
PowerEdge XR8610t BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr8610t/drivers
PowerEdge XR8620t BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr8620t/drivers
PowerEdge XR7620 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr7620/drivers
PowerEdge XE8640 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe8640/drivers
PowerEdge XE9640 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe9640/drivers
PowerEdge R6615 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
PowerEdge R7615 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
PowerEdge R6625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
PowerEdge R7625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
PowerEdge C6615 BIOS Versions prior to 1.2.3 Version 1.2.3 or later https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
PowerEdge R650 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r650/drivers
PowerEdge R750 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750/drivers
PowerEdge R750XA BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750xa/drivers
PowerEdge C6520 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-c6520/drivers
PowerEdge MX750C BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-mx750c/drivers
PowerEdge R550 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r550/drivers
PowerEdge R450 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r450/drivers
PowerEdge R650XS BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r650xs/drivers
PowerEdge R750XS BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750xs/drivers
PowerEdge T550 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-t550/drivers
PowerEdge XR11 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-xr11/drivers
PowerEdge XR12 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-xr12/drivers
PowerEdge T150 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-t150/drivers
PowerEdge T350 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-t350/drivers
PowerEdge R250 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r250/drivers
PowerEdge R350 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r350/drivers
PowerEdge XR4510c BIOS Versions prior to 1.14.1 Version 1.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xr4510c/drivers
PowerEdge XR4520c BIOS Versions prior to 1.14.1 Version 1.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xr4520c/drivers
PowerEdge R6515 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
PowerEdge R6525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
PowerEdge R7515 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
PowerEdge R7525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
PowerEdge C6525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
PowerEdge XE8545 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
Dell XC Core XC660 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/dell-xc660-core/drivers
Dell XC Core XC760 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/dell-xc760-core/drivers
Dell XC Core XC7625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers
Dell EMC XC Core XC450 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc450/drivers
Dell EMC XC Core XC650 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc650/drivers
Dell EMC XC Core XC750 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc750/drivers
Dell EMC XC Core XC750xa BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc750-xa/drivers
Dell EMC XC Core XC6520 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc6520/drivers
Dell EMC XC Core XC7525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/xc7525-core/drivers
Product Software/Firmware Affected Versions Remediated Versions Link
PowerEdge R660 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r660/drivers
PowerEdge R760 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760/drivers
PowerEdge C6620 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-c6620/drivers
PowerEdge MX760c BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-mx760c/drivers
PowerEdge R860 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r860/drivers
PowerEdge R960 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r960/drivers
PowerEdge HS5610 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-hs5610/drivers
PowerEdge HS5620 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-hs5620/drivers
PowerEdge R660xs BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r660xs/drivers
PowerEdge R760xs BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xs/drivers
PowerEdge R760xd2 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xd2/drivers
PowerEdge T560 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-t560/drivers
PowerEdge R760xa BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/poweredge-r760xa/drivers
PowerEdge XE9680 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe9680/drivers
PowerEdge XR5610 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr5610/drivers
PowerEdge XR8610t BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr8610t/drivers
PowerEdge XR8620t BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr8620t/drivers
PowerEdge XR7620 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xr7620/drivers
PowerEdge XE8640 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe8640/drivers
PowerEdge XE9640 BIOS Versions prior to 1.8.0 Version 1.8.0 or later https://www.dell.com/support/home/product-support/product/poweredge-xe9640/drivers
PowerEdge R6615 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r6615/drivers
PowerEdge R7615 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r7615/drivers
PowerEdge R6625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r6625/drivers
PowerEdge R7625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r7625/drivers
PowerEdge C6615 BIOS Versions prior to 1.2.3 Version 1.2.3 or later https://www.dell.com/support/home/product-support/product/poweredge-c6615/drivers
PowerEdge R650 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r650/drivers
PowerEdge R750 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750/drivers
PowerEdge R750XA BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750xa/drivers
PowerEdge C6520 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-c6520/drivers
PowerEdge MX750C BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-mx750c/drivers
PowerEdge R550 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r550/drivers
PowerEdge R450 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r450/drivers
PowerEdge R650XS BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r650xs/drivers
PowerEdge R750XS BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-r750xs/drivers
PowerEdge T550 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-t550/drivers
PowerEdge XR11 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-xr11/drivers
PowerEdge XR12 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/poweredge-xr12/drivers
PowerEdge T150 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-t150/drivers
PowerEdge T350 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-t350/drivers
PowerEdge R250 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r250/drivers
PowerEdge R350 BIOS Versions prior to 1.9.1 Version 1.9.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r350/drivers
PowerEdge XR4510c BIOS Versions prior to 1.14.1 Version 1.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xr4510c/drivers
PowerEdge XR4520c BIOS Versions prior to 1.14.1 Version 1.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xr4520c/drivers
PowerEdge R6515 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r6515/drivers
PowerEdge R6525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r6525/drivers
PowerEdge R7515 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r7515/drivers
PowerEdge R7525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-r7525/drivers
PowerEdge C6525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-c6525/drivers
PowerEdge XE8545 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/poweredge-xe8545/drivers
Dell XC Core XC660 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/dell-xc660-core/drivers
Dell XC Core XC760 BIOS Versions prior to 2.0.0 Version 2.0.0 or later https://www.dell.com/support/home/product-support/product/dell-xc760-core/drivers
Dell XC Core XC7625 BIOS Versions prior to 1.7.2 Version 1.7.2 or later https://www.dell.com/support/home/product-support/product/dell-xc7625-core/drivers
Dell EMC XC Core XC450 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc450/drivers
Dell EMC XC Core XC650 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc650/drivers
Dell EMC XC Core XC750 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc750/drivers
Dell EMC XC Core XC750xa BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc750-xa/drivers
Dell EMC XC Core XC6520 BIOS Versions prior to 1.13.2 Version 1.13.2 or later https://www.dell.com/support/home/product-support/product/dell-emc-xc6520/drivers
Dell EMC XC Core XC7525 BIOS Versions prior to 2.14.1 Version 2.14.1 or later https://www.dell.com/support/home/product-support/product/xc7525-core/drivers

Due to updates to address a functional issue, the previous BIOS version 1.7.6 for 16G E5 platforms was replaced by 1.8.0. Dell recommends all customers update to BIOS version 1.8.0.

The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Workarounds & Mitigations

None

Revision History

RevisionDateDescription
1.02024-03-12Initial release
2.02024-03-13Updated the CVE description to add "Dell Precision Rack BIOS"
3.02024-03-26Updated release versions for 16G platforms due to BIOS re-spin.
Updated the wording "Due to updates to address a functional issue, the previous BIOS version 1.7.6 for 16G E5 platforms was replaced by 1.8.0. Dell recommends all customers update to BIOS version 1.8.0." under the Additional Information section.
4.02024-06-13Updated for enhanced presentation with no changes to content

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Dell EMC XC Core XC450, Dell EMC XC Core XC650, Dell EMC XC Core XC6520, Dell EMC XC Core XC750, Dell EMC XC Core XC750xa, Dell XC Core XC660, Dell XC Core XC760, Dell XC Core XC7625, PowerEdge C6520, PowerEdge C6525, PowerEdge C6615, PowerEdge C6620 , PowerEdge HS5610, PowerEdge HS5620, PowerEdge MX750c, PowerEdge MX760c, PowerEdge R250, PowerEdge R350, PowerEdge R450, PowerEdge R550, PowerEdge R650, PowerEdge R650xs, PowerEdge R6515, PowerEdge R6525, PowerEdge R660, PowerEdge R660xs, PowerEdge R6615, PowerEdge R6625, PowerEdge R750, PowerEdge R750XA, PowerEdge R750xs, PowerEdge R7515, PowerEdge R7525, PowerEdge R760, PowerEdge R760XA, PowerEdge R760xd2, PowerEdge R760xs, PowerEdge R7615, PowerEdge R7625, PowerEdge R860, PowerEdge R960, PowerEdge T150, PowerEdge T350, PowerEdge T550, PowerEdge T560, PowerEdge XE8545, PowerEdge XE8640, PowerEdge XE9640, PowerEdge XE9680, PowerEdge XR11, PowerEdge XR12, PowerEdge XR4510c, PowerEdge XR4520c, PowerEdge XR5610, PowerEdge XR7620, PowerEdge XR8610t, PowerEdge XR8620t, Dell EMC XC Core XC7525 ...
Article Properties
Article Number: 000222756
Article Type: Dell Security Advisory
Last Modified: 13 Jun 2024
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.