Vulnerability Description
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Xps 17 9700 Firmware | < 1.30.0 |
| Dell | Xps 17 9700 | - |
| Dell | Xps 15 9500 Firmware | < 1.31.0 |
| Dell | Xps 15 9500 | - |
| Dell | Vostro 7500 Firmware | < 1.28.0 |
| Dell | Vostro 7500 | - |
| Dell | Precision 5750 Firmware | < 1.30.0 |
| Dell | Precision 5750 | - |
| Dell | Precision 5550 Firmware | < 1.31.0 |
| Dell | Precision 5550 | - |
| Dell | Latitude 3520 Firmware | < 1.36.0 |
| Dell | Latitude 3520 | - |
| Dell | Latitude 3510 Firmware | < 1.29.0 |
| Dell | Latitude 3510 | - |
| Dell | Latitude 3420 Firmware | < 1.36.0 |
| Dell | Latitude 3420 | - |
| Dell | Latitude 3410 Firmware | < 1.29.0 |
| Dell | Latitude 3410 | - |
| Dell | Inspiron 7501 Firmware | < 1.28.0 |
| Dell | Inspiron 7501 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000224763/dsa-2024-122Vendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000224763/dsa-2024-122Vendor Advisory
FAQ
What is CVE-2024-0160?
CVE-2024-0160 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to m...
How severe is CVE-2024-0160?
CVE-2024-0160 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-0160?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Xps 17 9700 Firmware, Dell Xps 17 9700, Dell Xps 15 9500 Firmware, Dell Xps 15 9500, Dell Vostro 7500 Firmware.