CVE-2024-22453
19.03.2024, 08:15
Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulnerability. A local high privileged attacker could potentially exploit this vulnerability to write to otherwise unauthorized memory.Enginsight
| Vendor | Product | Version |
|---|---|---|
| dell | poweredge_r730_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r730xd_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r630_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_c4130_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r930_firmware | 𝑥 < 2.14.0 |
| dell | poweredge_m630_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_m630_\(pe_vrtx\)_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_fc630_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_fc430_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_m830_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_m830_\(pe_vrtx\)_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_fc830_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_t630_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r530_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r430_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_t430_firmware | 𝑥 < 2.19.0 |
| dell | poweredge_r830_firmware | 𝑥 < 1.19.0 |
| dell | poweredge_c6320_firmware | 𝑥 < 2.19.0 |
| dell | nx3230_firmware | 𝑥 < 2.19.0 |
| dell | nx3330_firmware | 𝑥 < 2.19.0 |
| dell | xc6320_firmware | 𝑥 < 2.19.0 |
| dell | xc430_firmware | 𝑥 < 2.19.0 |
| dell | xc630_firmware | 𝑥 < 2.19.0 |
| dell | xc730_firmware | 𝑥 < 2.19.0 |
| dell | xc730xd_firmware | 𝑥 < 2.19.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-122 - Heap-based Buffer OverflowA heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.
References