Vulnerability Description
Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Inspiron 3480 Firmware | < 1.30.0 |
| Dell | Inspiron 3480 | - |
| Dell | Inspiron 3580 Firmware | < 1.30.0 |
| Dell | Inspiron 3580 | - |
| Dell | Latitude 3120 Firmware | < 1.26.0 |
| Dell | Latitude 3120 | - |
| Dell | Latitude 3190 Firmware | < 1.34.0 |
| Dell | Latitude 3190 | - |
| Dell | Latitude 3190 2-In-1 Firmware | < 1.34.0 |
| Dell | Latitude 3190 2-In-1 | - |
| Dell | Latitude 3300 Firmware | < 1.28.0 |
| Dell | Latitude 3300 | - |
| Dell | Latitude 3310 Firmware | < 1.25.0 |
| Dell | Latitude 3310 | - |
| Dell | Latitude 3310 2-In-1 Firmware | < 1.24.0 |
| Dell | Latitude 3310 2-In-1 | - |
| Dell | Latitude 3390 2-In-1 Firmware | < 1.31.0 |
| Dell | Latitude 3390 2-In-1 | - |
| Dell | Latitude 5288 Firmware | < 1.36.0 |
| Dell | Latitude 5288 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123Vendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123Vendor Advisory
FAQ
What is CVE-2024-32855?
CVE-2024-32855 is a vulnerability with a CVSS score of 3.8 (LOW). Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability,...
How severe is CVE-2024-32855?
CVE-2024-32855 has been rated LOW with a CVSS base score of 3.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-32855?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Inspiron 3480 Firmware, Dell Inspiron 3480, Dell Inspiron 3580 Firmware, Dell Inspiron 3580, Dell Latitude 3120 Firmware.