4.4
MEDIUM
CVE-2024-32855
Dell Client Platform BIOS Out-of-bounds Write Information Tampering
Description

Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.

INFO

Published Date :

June 25, 2024, 4:15 a.m.

Last Modified :

Feb. 4, 2025, 5:21 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

3.6

Exploitability Score :

0.8
Affected Products

The following products are affected by CVE-2024-32855 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Dell cpg_bios
2 Dell inspiron_3480_firmware
3 Dell inspiron_3580_firmware
4 Dell latitude_3120_firmware
5 Dell latitude_3190_firmware
6 Dell latitude_3190_2-in-1_firmware
7 Dell latitude_3300_firmware
8 Dell latitude_3310_firmware
9 Dell latitude_3310_2-in-1_firmware
10 Dell latitude_3390_2-in-1_firmware
11 Dell latitude_5288_firmware
12 Dell latitude_5290_firmware
13 Dell latitude_5290_2-in-1_firmware
14 Dell latitude_5300_firmware
15 Dell latitude_5300_2-in-1_firmware
16 Dell latitude_5310_firmware
17 Dell latitude_5310_2-in-1_firmware
18 Dell latitude_5400_firmware
19 Dell latitude_5401_firmware
20 Dell latitude_5410_firmware
21 Dell latitude_5411_firmware
22 Dell latitude_5420_rugged_firmware
23 Dell latitude_5424_rugged_firmware
24 Dell latitude_5480_firmware
25 Dell latitude_5488_firmware
26 Dell latitude_5490_firmware
27 Dell latitude_5491_firmware
28 Dell latitude_5500_firmware
29 Dell latitude_5501_firmware
30 Dell latitude_5510_firmware
31 Dell latitude_5511_firmware
32 Dell latitude_5580_firmware
33 Dell latitude_5590_firmware
34 Dell latitude_5591_firmware
35 Dell latitude_7200_2-in-1_firmware
36 Dell latitude_7210_2-in-1_firmware
37 Dell latitude_7212_rugged_extreme_tablet_firmware
38 Dell latitude_7280_firmware
39 Dell latitude_7290_firmware
40 Dell latitude_7300_firmware
41 Dell latitude_7310_firmware
42 Dell latitude_7380_firmware
43 Dell latitude_7390_firmware
44 Dell latitude_7390_2-in-1_firmware
45 Dell latitude_7400_firmware
46 Dell latitude_7400_2-in-1_firmware
47 Dell latitude_7410_firmware
48 Dell latitude_7424_rugged_extreme_firmware
49 Dell latitude_7480_firmware
50 Dell latitude_7490_firmware
51 Dell latitude_9410_firmware
52 Dell latitude_rugged_7220ex_firmware
53 Dell precision_3520_firmware
54 Dell precision_3530_firmware
55 Dell precision_3540_firmware
56 Dell precision_3541_firmware
57 Dell precision_3550_firmware
58 Dell precision_3551_firmware
59 Dell precision_5530_firmware
60 Dell precision_5530_2-in-1_firmware
61 Dell precision_5540_firmware
62 Dell precision_7530_firmware
63 Dell precision_7540_firmware
64 Dell precision_7730_firmware
65 Dell precision_7740_firmware
66 Dell vostro_3480_firmware
67 Dell vostro_3580_firmware
68 Dell vostro_3583_firmware
69 Dell wyse_5470_firmware
70 Dell wyse_5470_all-in-one_firmware
71 Dell xps_15_7590_firmware
72 Dell precision_7550_firmware
73 Dell precision_7750_firmware
74 Dell inspiron_3480
75 Dell inspiron_3580
76 Dell latitude_3120
77 Dell latitude_3190
78 Dell latitude_3190_2-in-1
79 Dell latitude_3300
80 Dell latitude_3310
81 Dell latitude_3310_2-in-1
82 Dell latitude_3390_2-in-1
83 Dell latitude_5288
84 Dell latitude_5290
85 Dell latitude_5290_2-in-1
86 Dell latitude_5300
87 Dell latitude_5300_2-in-1
88 Dell latitude_5310
89 Dell latitude_5310_2-in-1
90 Dell latitude_5400
91 Dell latitude_5401
92 Dell latitude_5410
93 Dell latitude_5411
94 Dell latitude_5420_rugged
95 Dell latitude_5424_rugged
96 Dell latitude_5480
97 Dell latitude_5488
98 Dell latitude_5490
99 Dell latitude_5491
100 Dell latitude_5500
101 Dell latitude_5501
102 Dell latitude_5510
103 Dell latitude_5511
104 Dell latitude_5580
105 Dell latitude_5590
106 Dell latitude_5591
107 Dell latitude_7200_2-in-1
108 Dell latitude_7210_2-in-1
109 Dell latitude_7212_rugged_extreme_tablet
110 Dell latitude_7220_rugged_extreme_firmware
111 Dell latitude_7220_rugged_extreme
112 Dell latitude_7280
113 Dell latitude_7290
114 Dell latitude_7300
115 Dell latitude_7310
116 Dell latitude_7380
117 Dell latitude_7390
118 Dell latitude_7390_2-in-1
119 Dell latitude_7400
120 Dell latitude_7400_2-in-1
121 Dell latitude_7410
122 Dell latitude_7424_rugged_extreme
123 Dell latitude_7480
124 Dell latitude_7490
125 Dell latitude_9410
126 Dell latitude_9510_2in1_firmware
127 Dell latitude_9510_2in1
128 Dell latitude_rugged_7220ex
129 Dell precision_3520
130 Dell precision_3530
131 Dell precision_3540
132 Dell precision_3541
133 Dell precision_3550
134 Dell precision_3551
135 Dell precision_5530
136 Dell precision_5530_2-in-1
137 Dell precision_5540
138 Dell precision_7530
139 Dell precision_7540
140 Dell precision_7550
141 Dell precision_7730
142 Dell precision_7740
143 Dell precision_7750
144 Dell vostro_3480
145 Dell vostro_3580
146 Dell vostro_3583
147 Dell wyse_5470
148 Dell wyse_5470_all-in-one
149 Dell xps_15_7590
: Total Affected Vendor : 1 | Products : 149
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-32855.

URL Resource
https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-32855 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2024-32855 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Feb. 04, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:inspiron_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:inspiron_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3120_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.26.0 OR cpe:2.3:h:dell:latitude_3120:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3190_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.34.0 OR cpe:2.3:h:dell:latitude_3190_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3190_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.34.0 OR cpe:2.3:h:dell:latitude_3190:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:latitude_3300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3310_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.24.0 OR cpe:2.3:h:dell:latitude_3310_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3310_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.25.0 OR cpe:2.3:h:dell:latitude_3310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3390_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_3390_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5288_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_5288:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5290_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.34.0 OR cpe:2.3:h:dell:latitude_5290_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.35.0 OR cpe:2.3:h:dell:latitude_5290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5300_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_5300_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_5300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5310_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.24.0 OR cpe:2.3:h:dell:latitude_5310_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5310_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.24.0 OR cpe:2.3:h:dell:latitude_5310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:latitude_5400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5401_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_5401:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5410_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:latitude_5410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5411_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.29.0 OR cpe:2.3:h:dell:latitude_5411:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5420_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.32.0 OR cpe:2.3:h:dell:latitude_5420_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5424_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.32.0 OR cpe:2.3:h:dell:latitude_5424_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_5480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5488_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_5488:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.35.0 OR cpe:2.3:h:dell:latitude_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5491_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.33.0 OR cpe:2.3:h:dell:latitude_5491:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5500_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:latitude_5500:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5501_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_5501:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5510_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:latitude_5510:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5511_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.29.0 OR cpe:2.3:h:dell:latitude_5511:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_5580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.35.0 OR cpe:2.3:h:dell:latitude_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.33.0 OR cpe:2.3:h:dell:latitude_5591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7200_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.29.0 OR cpe:2.3:h:dell:latitude_7200_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7210_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:latitude_7210_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7212_rugged_extreme_tablet_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.50.0 OR cpe:2.3:h:dell:latitude_7212_rugged_extreme_tablet:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7220_rugged_extreme_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_7220_rugged_extreme:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7280_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.37.0 OR cpe:2.3:h:dell:latitude_7280:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.38.0 OR cpe:2.3:h:dell:latitude_7290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_7300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7310_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:latitude_7310:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7380_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.37.0 OR cpe:2.3:h:dell:latitude_7380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7390_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.35.0 OR cpe:2.3:h:dell:latitude_7390_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.38.0 OR cpe:2.3:h:dell:latitude_7390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7400_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:latitude_7400_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:latitude_7400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7410_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:latitude_7410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7424_rugged_extreme_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.32.0 OR cpe:2.3:h:dell:latitude_7424_rugged_extreme:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.37.0 OR cpe:2.3:h:dell:latitude_7480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.38.0 OR cpe:2.3:h:dell:latitude_7490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_9410_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.29.0 OR cpe:2.3:h:dell:latitude_9410:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_9510_2in1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:latitude_9510_2in1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_rugged_7220ex_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:latitude_rugged_7220ex:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3520_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.36.0 OR cpe:2.3:h:dell:precision_3520:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.33.0 OR cpe:2.3:h:dell:precision_3530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:precision_3540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3541_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:precision_3541:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3550_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:precision_3550:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3551_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.29.0 OR cpe:2.3:h:dell:precision_3551:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5530_2-in-1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.8 OR cpe:2.3:h:dell:precision_5530_2-in-1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.37.0 OR cpe:2.3:h:dell:precision_5530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:precision_5540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.34.0 OR cpe:2.3:h:dell:precision_7530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.32.0 OR cpe:2.3:h:dell:precision_7540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7550_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:precision_7550:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7730_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.34.0 OR cpe:2.3:h:dell:precision_7730:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7740_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.32.0 OR cpe:2.3:h:dell:precision_7740:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7750_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.31.0 OR cpe:2.3:h:dell:precision_7750:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:vostro_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:vostro_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.30.0 OR cpe:2.3:h:dell:vostro_3583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5470_all-in-one_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.26.0 OR cpe:2.3:h:dell:wyse_5470_all-in-one:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5470_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.25.0 OR cpe:2.3:h:dell:wyse_5470:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.28.0 OR cpe:2.3:h:dell:xps_15_7590:-:*:*:*:*:*:*:*
    Changed Reference Type https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 No Types Assigned https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 Vendor Advisory
    Changed Reference Type https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 No Types Assigned https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 Vendor Advisory
  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Nov. 21, 2024

    Action Type Old Value New Value
    Added Reference https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123
  • CVE Received by [email protected]

    Jun. 25, 2024

    Action Type Old Value New Value
    Added Description Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.
    Added Reference Dell https://www.dell.com/support/kbdoc/en-us/000225627/dsa-2024-123 [No types assigned]
    Added CWE Dell CWE-787
    Added CVSS V3.1 Dell AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-32855 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-32855 weaknesses.

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: