CVE-2025-29989

CWE-13283 documents3 sources

Severity

4.4MEDIUM

EPSS

0.1%

top 83.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dell Dell Client Platform Bios Dell Precision 5820 Tower Firmware Dell Precision 7820 Tower Firmware +2 more

Timeline

PublishedApr 10

Description

Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to BIOS upgrade denial.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:LExploitability: 0.6 | Impact: 2.5

Affected Packages5 packages

▶CVEListV5dell/dell_client_platform_biosN/A — 2.42.0+2

▶NVDdell/precision_5820_tower_firmware< 2.42.0

▶NVDdell/precision_7820_tower_firmware< 2.46.0

▶NVDdell/precision_7865_tower_firmware< 1.18.0

▶NVDdell/precision_7920_tower_firmware< 2.46.0

🔴Vulnerability Details

GHSA

GHSA-5537-v9p2-j3p7: Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability↗2025-04-10

▶

CVEList

CVE-2025-29989: Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability↗2025-04-10

▶