Vulnerability Description
Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Latitude 5290 2-In-1 Firmware | < 1.35.0 |
| Dell | Latitude 5290 2-In-1 | - |
| Dell | Precision 3420 Tower Firmware | < 2.32.0 |
| Dell | Precision 3420 | - |
| Dell | Precision 3620 Firmware | < 2.32.0 |
| Dell | Precision 3620 Tower | - |
| Dell | Wyse 7040 Thin Client Firmware | < 1.26.0 |
| Dell | Wyse 7040 Thin Client | - |
| Dell | Precision 7720 Firmware | < 1.37.0 |
| Dell | Precision 7720 | - |
| Dell | Precision 7520 Firmware | 1.37.0 |
| Dell | Precision 7520 | - |
| Dell | Precision 5530 2-In-1 Firmware | < 1.32.8 |
| Dell | Precision 5530 2-In-1 | - |
| Dell | Precision 5520 Firmware | < 1.39.0 |
| Dell | Precision 5520 | - |
| Dell | Precision 3520 Firmware | < 1.37.0 |
| Dell | Precision 3520 | - |
| Dell | Optiplex 7450 All-In-One Firmware | < 1.34.0 |
| Dell | Optiplex 7450 All-In-One | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-38483?
CVE-2024-38483 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading t...
How severe is CVE-2024-38483?
CVE-2024-38483 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-38483?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Latitude 5290 2-In-1 Firmware, Dell Latitude 5290 2-In-1, Dell Precision 3420 Tower Firmware, Dell Precision 3420, Dell Precision 3620 Firmware.