CVE-2024-47238

Summary

Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
DellDell Client Platform BIOSN/A < 1.29.0affected
DellDell Client Platform BIOSN/A < 1.19.0affected
DellDell Client Platform BIOSN/A < 1.25.0affected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References