CVE-2024-32856

Summary

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.

Affected Software

VendorProductVersion RangeStatus
DellCPG BIOSN/A < 2.8.0affected
DellCPG BIOSN/A < 1.0.24affected
DellCPG BIOSN/A < 1.1.25affected
DellCPG BIOSN/A < 1.19.0affected
DellCPG BIOSN/A < 1.12.0affected
DellCPG BIOSN/A < 1.13.0affected
DellCPG BIOSN/A < 2.18.0affected
DellCPG BIOSN/A < 2.7.0affected
DellCPG BIOSN/A < 1.16.0affected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References