CVE-2024-0161

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Mar 13, 2024

CWE ID 20

Summary

CVE-2024-0161 is a vulnerability affecting the BIOS of Dell PowerEdge Servers and Dell Precision Rack Systems. This issue involves improper buffer verification during Small Memory Range Access (SMRAM) communication in the System Management Mode (SMM). A local, low-privileged attacker can potentially exploit this flaw to perform arbitrary writes to SMRAM, which could result in unauthorized system access or data corruption. This vulnerability poses a significant risk to the security and integrity of affected systems and requires immediate attention from Dell and its customers.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/u3dcZ9
https://www.cve.org/CVERecord?id=CVE-2024-0161
https://nvd.nist.gov/vuln/detail/CVE-2024-0161

Back to Vulnerability Database

CVE-2024-0161

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations