Dell Client Platform Bios vulnerabilities

7 known vulnerabilities affecting dell/dell_client_platform_bios.

Total CVEs

7

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH2MEDIUM5

Vulnerabilities

Page 1 of 1

CVE-2025-29989MEDIUMCVSS 4.4≥ N/A, < 2.42.0≥ N/A, < 2.46.0+1 more2025-04-10

CVE-2025-29989 [LOW] CWE-1328 CVE-2025-29989: Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to BIOS upgrade denial.

CVE-2025-29988MEDIUMCVSS 6.7≥ N/A, < 2.1.5≥ N/A, < 1.35.0+2 more2025-04-09

CVE-2025-29988 [MEDIUM] CWE-121 CVE-2025-29988: Dell Client Platform BIOS contains a Stack-based Buffer Overflow Vulnerability. A high privileged at Dell Client Platform BIOS contains a Stack-based Buffer Overflow Vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution.

CVE-2024-52541HIGHCVSS 8.2≥ N/A, < 1.34.0≥ N/A, < 1.28.0+76 more2025-02-19

CVE-2024-52541 [HIGH] CWE-1390 CVE-2024-52541: Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker w Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

CVE-2024-47238MEDIUMCVSS 6.7≥ N/A, < 1.29.0≥ N/A, < 1.19.0+1 more2024-12-12

CVE-2024-47238 [HIGH] CWE-20 CVE-2024-47238: Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally devel Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution.

CVE-2024-52537MEDIUMCVSS 6.7≥ N/A, < 1.00.44, 1.00.28≥ N/A, < 1.00.23,1.00.282024-12-11

CVE-2024-52537 [MEDIUM] CWE-61 CVE-2024-52537: Dell Client Platform Firmware Update Utility contains an Improper Link Resolution vulnerability. A h Dell Client Platform Firmware Update Utility contains an Improper Link Resolution vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

CVE-2024-39584HIGHCVSS 8.2≥ N/A, < 1.29.0≥ N/A, < 1.15.0+2 more2024-08-28

CVE-2024-39584 [HIGH] CWE-1392 CVE-2024-39584: Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high privile Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Secure Boot bypass and arbitrary code execution.

CVE-2024-38483MEDIUMCVSS 6.7≥ N/A, < 1.35.0≥ N/A, < 2.32.0+1 more2024-08-14

CVE-2024-38483 [MEDIUM] CWE-20 CVE-2024-38483: Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.