Article Number: 000224763
Medium
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
CVE-2024-0160 | Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS. | 6.8 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
CVE-2024-0160 | Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS. | 6.8 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Product |
Software/Firmware | Affected Versions | Remediated Versions | BIOS Release Date | Link |
---|---|---|---|---|---|
Dell G7 7500 | BIOS | Versions prior to 1.32.0 | Versions 1.32.0 or later | 05/30/2024 | Go to the Drivers & Downloads site for updates |
Dell G7 7700 | BIOS | Versions prior to 1.32.0 | Versions 1.32.0 or later | 05/30/2024 | Go to the Drivers & Downloads site for updates |
Product |
Software/Firmware | Affected Versions | Remediated Versions | BIOS Release Date | Link |
---|---|---|---|---|---|
Dell G7 7500 | BIOS | Versions prior to 1.32.0 | Versions 1.32.0 or later | 05/30/2024 | Go to the Drivers & Downloads site for updates |
Dell G7 7700 | BIOS | Versions prior to 1.32.0 | Versions 1.32.0 or later | 05/30/2024 | Go to the Drivers & Downloads site for updates |
None
CVE-2024-0160: Dell would like to thank Ben McEwan, Penetration Tester at Bridewell (www.bridewell.com) for reporting this issue.
Revision | Date | Description |
1.0 | 2024-06-11 | Initial Release |
Dell G7 15 7500, Dell G7 17 7700
11 Jun 2024
Dell Security Advisory