CVE-2024-22429

Summary

Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
DellCPG BIOSN/A < 2.36.0affected
DellCPG BIOSN/A < 1.18.0affected
DellCPG BIOSN/A < 1.46.0affected
DellCPG BIOSN/A < 1.27.0affected
DellCPG BIOSN/A < 1.29.0affected
DellCPG BIOSN/A < 1.28.0affected
DellCPG BIOSN/A < 1.31.0affected
DellCPG BIOSN/A < 1.32.0affected
DellCPG BIOSN/A < 1.50.0affected
DellCPG BIOSN/A < 2.30.0affected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References