Vulnerability-Lookup

BDU:2024-01989

Vulnerability from fstec - Published: 13.03.2024

Title

Уязвимость микропрограммного обеспечения BIOS серверов Dell PowerEdge и рабочих станций Dell Precision Rack, позволяющая нарушителю записать произвольные данные в область SMRAM (System Management RAM)

Description

Уязвимость микропрограммного обеспечения BIOS серверов Dell PowerEdge и рабочих станций Dell Precision Rack связана шибками при проверке буфера связи SMM. Эксплуатация уязвимости может позволить нарушителю записать произвольные данные в область SMRAM (System Management RAM)

Severity ?


                    
                      AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H

Vendor

Dell Technologies

Software Name

PowerEdge R650, PowerEdge R750, PowerEdge R750XA, PowerEdge C6520, PowerEdge MX750C, PowerEdge R550, PowerEdge R450, PowerEdge R650XS, PowerEdge R750XS, PowerEdge T550, PowerEdge XR11, PowerEdge XR12, PowerEdge XR4510c, PowerEdge XR4520c, PowerEdge T150, PowerEdge T350, PowerEdge R250, PowerEdge R350, PowerEdge R740, PowerEdge R740XD, PowerEdge R640, PowerEdge R940, PowerEdge R540, PowerEdge R440, PowerEdge T440, PowerEdge XR2, PowerEdge R740xD2, PowerEdge R840, PowerEdge R940xa, PowerEdge T640, PowerEdge C6420, PowerEdge FC640, PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge MX740c, PowerEdge MX840c, PowerEdge C4140, DSS 8440, PowerEdge XE2420, PowerEdge XE7420, PowerEdge XE7440, PowerEdge R730, PowerEdge R730xd, PowerEdge R630, PowerEdge C4130, PowerEdge R930, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge FC630, PowerEdge FC430, PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge T630, PowerEdge R530, PowerEdge T430, PowerEdge R830, PowerEdge C6320, PowerEdge T130, PowerEdge R230, PowerEdge T330, PowerEdge R330, EMC Storage NX3240, EMC Storage NX3340, Storage NX3230, Storage NX3330, Storage NX430, EMC XC Core XC450, EMC XC Core XC650, EMC XC Core XC750, EMC XC Core XC750xa, EMC XC Core XC6520, EMC XC Core 6420 System, EMC XC Core XC640 System, EMC XC Core XC740xd2, EMC XC Core XC740xd System, EMC XC Core XC940 System, EMC XC Core XCXR2, XC430, XC630, XC730, XC730XD, PowerEdge T360, PowerEdge R360

Software Version

до 1.13.2 (PowerEdge R650), до 1.13.2 (PowerEdge R750), до 1.13.2 (PowerEdge R750XA), до 1.13.2 (PowerEdge C6520), до 1.13.2 (PowerEdge MX750C), до 1.13.2 (PowerEdge R550), до 1.13.2 (PowerEdge R450), до 1.13.2 (PowerEdge R650XS), до 1.13.2 (PowerEdge R750XS), до 1.13.2 (PowerEdge T550), до 1.13.2 (PowerEdge XR11), до 1.13.2 (PowerEdge XR12), до 1.14.1 (PowerEdge XR4510c), до 1.14.1 (PowerEdge XR4520c), до 1.9.1 (PowerEdge T150), до 1.9.1 (PowerEdge T350), до 1.9.1 (PowerEdge R250), до 1.9.1 (PowerEdge R350), до 2.21.2 (PowerEdge R740), до 2.21.2 (PowerEdge R740XD), до 2.21.2 (PowerEdge R640), до 2.21.2 (PowerEdge R940), до 2.21.1 (PowerEdge R540), до 2.21.1 (PowerEdge R440), до 2.21.1 (PowerEdge T440), до 2.21.1 (PowerEdge XR2), до 2.21.1 (PowerEdge R740xD2), до 2.21.0 (PowerEdge R840), до 2.21.0 (PowerEdge R940xa), до 2.21.0 (PowerEdge T640), до 2.21.0 (PowerEdge C6420), до 2.21.0 (PowerEdge FC640), до 2.21.0 (PowerEdge M640), до 2.21.0 (PowerEdge M640 (for PE VRTX)), до 2.21.0 (PowerEdge MX740c), до 2.21.0 (PowerEdge MX840c), до 2.21.1 (PowerEdge C4140), до 2.21.0 (DSS 8440), до 2.21.0 (PowerEdge XE2420), до 2.21.0 (PowerEdge XE7420), до 2.21.0 (PowerEdge XE7440), до 2.19.0 (PowerEdge R730), до 2.19.0 (PowerEdge R730xd), до 2.19.0 (PowerEdge R630), до 2.19.0 (PowerEdge C4130), до 2.14.0 (PowerEdge R930), до 2.19.0 (PowerEdge M630), до 2.19.0 (PowerEdge M630 (for PE VRTX)), до 2.19.0 (PowerEdge FC630), до 2.19.0 (PowerEdge FC430), до 2.19.0 (PowerEdge M830), до 2.19.0 (PowerEdge M830 (for PE VRTX)), до 2.19.0 (PowerEdge T630), до 2.19.0 (PowerEdge R530), до 2.19.0 (PowerEdge T430), до 1.19.0 (PowerEdge R830), до 2.19.0 (PowerEdge C6320), до 2.20.0 (PowerEdge T130), до 2.20.0 (PowerEdge R230), до 2.20.0 (PowerEdge T330), до 2.20.0 (PowerEdge R330), до 2.21.2 (EMC Storage NX3240), до 2.21.2 (EMC Storage NX3340), до 2.19.0 (Storage NX3230), до 2.19.0 (Storage NX3330), до 2.20.0 (Storage NX430), до 1.13.2 (EMC XC Core XC450), до 1.13.2 (EMC XC Core XC650), до 1.13.2 (EMC XC Core XC750), до 1.13.2 (EMC XC Core XC750xa), до 1.13.2 (EMC XC Core XC6520), до 2.21.0 (EMC XC Core 6420 System), до 2.21.2 (EMC XC Core XC640 System), до 2.21.1 (EMC XC Core XC740xd2), до 2.21.2 (EMC XC Core XC740xd System), до 2.21.2 (EMC XC Core XC940 System), до 2.21.1 (EMC XC Core XCXR2), до 2.19.0 (XC430), до 2.19.0 (XC630), до 2.19.0 (XC730), до 2.19.0 (XC730XD), до 1.1.1 (PowerEdge T360), до 1.1.1 (PowerEdge R360)

Possible Mitigations

Использование рекомендаций: https://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability

Reference

https://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:H/Au:M/C:N/I:C/A:C",
  "CVSS 3.0": "AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Dell Technologies",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 1.13.2 (PowerEdge R650), \u0434\u043e 1.13.2 (PowerEdge R750), \u0434\u043e 1.13.2 (PowerEdge R750XA), \u0434\u043e 1.13.2 (PowerEdge C6520), \u0434\u043e 1.13.2 (PowerEdge MX750C), \u0434\u043e 1.13.2 (PowerEdge R550), \u0434\u043e 1.13.2 (PowerEdge R450), \u0434\u043e 1.13.2 (PowerEdge R650XS), \u0434\u043e 1.13.2 (PowerEdge R750XS), \u0434\u043e 1.13.2 (PowerEdge T550), \u0434\u043e 1.13.2 (PowerEdge XR11), \u0434\u043e 1.13.2 (PowerEdge XR12), \u0434\u043e 1.14.1 (PowerEdge XR4510c), \u0434\u043e 1.14.1 (PowerEdge XR4520c), \u0434\u043e 1.9.1 (PowerEdge T150), \u0434\u043e 1.9.1 (PowerEdge T350), \u0434\u043e 1.9.1 (PowerEdge R250), \u0434\u043e 1.9.1 (PowerEdge R350), \u0434\u043e 2.21.2 (PowerEdge R740), \u0434\u043e 2.21.2 (PowerEdge R740XD), \u0434\u043e 2.21.2 (PowerEdge R640), \u0434\u043e 2.21.2 (PowerEdge R940), \u0434\u043e 2.21.1 (PowerEdge R540), \u0434\u043e 2.21.1 (PowerEdge R440), \u0434\u043e 2.21.1 (PowerEdge T440), \u0434\u043e 2.21.1 (PowerEdge XR2), \u0434\u043e 2.21.1 (PowerEdge R740xD2), \u0434\u043e 2.21.0 (PowerEdge R840), \u0434\u043e 2.21.0 (PowerEdge R940xa), \u0434\u043e 2.21.0 (PowerEdge T640), \u0434\u043e 2.21.0 (PowerEdge C6420), \u0434\u043e 2.21.0 (PowerEdge FC640), \u0434\u043e 2.21.0 (PowerEdge M640), \u0434\u043e 2.21.0 (PowerEdge M640 (for PE VRTX)), \u0434\u043e 2.21.0 (PowerEdge MX740c), \u0434\u043e 2.21.0 (PowerEdge MX840c), \u0434\u043e 2.21.1 (PowerEdge C4140), \u0434\u043e 2.21.0 (DSS 8440), \u0434\u043e 2.21.0 (PowerEdge XE2420), \u0434\u043e 2.21.0 (PowerEdge XE7420), \u0434\u043e 2.21.0 (PowerEdge XE7440), \u0434\u043e 2.19.0 (PowerEdge R730), \u0434\u043e 2.19.0 (PowerEdge R730xd), \u0434\u043e 2.19.0 (PowerEdge R630), \u0434\u043e 2.19.0 (PowerEdge C4130), \u0434\u043e 2.14.0 (PowerEdge R930), \u0434\u043e 2.19.0 (PowerEdge M630), \u0434\u043e 2.19.0 (PowerEdge M630 (for PE VRTX)), \u0434\u043e 2.19.0 (PowerEdge FC630), \u0434\u043e 2.19.0 (PowerEdge FC430), \u0434\u043e 2.19.0 (PowerEdge M830), \u0434\u043e 2.19.0 (PowerEdge M830 (for PE VRTX)), \u0434\u043e 2.19.0 (PowerEdge T630), \u0434\u043e 2.19.0 (PowerEdge R530), \u0434\u043e 2.19.0 (PowerEdge T430), \u0434\u043e 1.19.0 (PowerEdge R830), \u0434\u043e 2.19.0 (PowerEdge C6320), \u0434\u043e 2.20.0 (PowerEdge T130), \u0434\u043e 2.20.0 (PowerEdge R230), \u0434\u043e 2.20.0 (PowerEdge T330), \u0434\u043e 2.20.0 (PowerEdge R330), \u0434\u043e 2.21.2 (EMC Storage NX3240), \u0434\u043e 2.21.2 (EMC Storage NX3340), \u0434\u043e 2.19.0 (Storage NX3230), \u0434\u043e 2.19.0 (Storage NX3330), \u0434\u043e 2.20.0 (Storage NX430), \u0434\u043e 1.13.2 (EMC XC Core XC450), \u0434\u043e 1.13.2 (EMC XC Core XC650), \u0434\u043e 1.13.2 (EMC XC Core XC750), \u0434\u043e 1.13.2 (EMC XC Core XC750xa), \u0434\u043e 1.13.2 (EMC XC Core XC6520), \u0434\u043e 2.21.0 (EMC XC Core 6420 System), \u0434\u043e 2.21.2 (EMC XC Core XC640 System), \u0434\u043e 2.21.1 (EMC XC Core XC740xd2), \u0434\u043e 2.21.2 (EMC XC Core XC740xd System), \u0434\u043e 2.21.2 (EMC XC Core XC940 System), \u0434\u043e 2.21.1 (EMC XC Core XCXR2), \u0434\u043e 2.19.0 (XC430), \u0434\u043e 2.19.0 (XC630), \u0434\u043e 2.19.0 (XC730), \u0434\u043e 2.19.0 (XC730XD), \u0434\u043e 1.1.1 (PowerEdge T360), \u0434\u043e 1.1.1 (PowerEdge R360)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.03.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "14.03.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "14.03.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-01989",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-0161",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "PowerEdge R650, PowerEdge R750, PowerEdge R750XA, PowerEdge C6520, PowerEdge MX750C, PowerEdge R550, PowerEdge R450, PowerEdge R650XS, PowerEdge R750XS, PowerEdge T550, PowerEdge XR11, PowerEdge XR12, PowerEdge XR4510c, PowerEdge XR4520c, PowerEdge T150, PowerEdge T350, PowerEdge R250, PowerEdge R350, PowerEdge R740, PowerEdge R740XD, PowerEdge R640, PowerEdge R940, PowerEdge R540, PowerEdge R440, PowerEdge T440, PowerEdge XR2, PowerEdge R740xD2, PowerEdge R840, PowerEdge R940xa, PowerEdge T640, PowerEdge C6420, PowerEdge FC640, PowerEdge M640, PowerEdge M640 (for PE VRTX), PowerEdge MX740c, PowerEdge MX840c, PowerEdge C4140, DSS 8440, PowerEdge XE2420, PowerEdge XE7420, PowerEdge XE7440, PowerEdge R730, PowerEdge R730xd, PowerEdge R630, PowerEdge C4130, PowerEdge R930, PowerEdge M630, PowerEdge M630 (for PE VRTX), PowerEdge FC630, PowerEdge FC430, PowerEdge M830, PowerEdge M830 (for PE VRTX), PowerEdge T630, PowerEdge R530, PowerEdge T430, PowerEdge R830, PowerEdge C6320, PowerEdge T130, PowerEdge R230, PowerEdge T330, PowerEdge R330, EMC Storage NX3240, EMC Storage NX3340, Storage NX3230, Storage NX3330, Storage NX430, EMC XC Core XC450, EMC XC Core XC650, EMC XC Core XC750, EMC XC Core XC750xa, EMC XC Core XC6520, EMC XC Core 6420 System, EMC XC Core XC640 System, EMC XC Core XC740xd2, EMC XC Core XC740xd System, EMC XC Core XC940 System, EMC XC Core XCXR2, XC430, XC630, XC730, XC730XD, PowerEdge T360, PowerEdge R360",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f BIOS \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 Dell PowerEdge \u0438 \u0440\u0430\u0431\u043e\u0447\u0438\u0445 \u0441\u0442\u0430\u043d\u0446\u0438\u0439 Dell Precision Rack, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0437\u0430\u043f\u0438\u0441\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u044c SMRAM (System Management RAM)",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f BIOS \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 Dell PowerEdge \u0438 \u0440\u0430\u0431\u043e\u0447\u0438\u0445 \u0441\u0442\u0430\u043d\u0446\u0438\u0439 Dell Precision Rack \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u043f\u0440\u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0435 \u0431\u0443\u0444\u0435\u0440\u0430 \u0441\u0432\u044f\u0437\u0438 SMM. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0437\u0430\u043f\u0438\u0441\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u044c SMRAM (System Management RAM)",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u043a\u043e\u0434, \u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,3)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,2)"
}

CVE-2024-0161 (GCVE-0-2024-0161)

Vulnerability from cvelistv5 – Published: 2024-03-13 16:04 – Updated: 2024-08-12 13:56

Summary

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.

Severity ?

7.2 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H

CWE

CWE-20 - Improper Input Validation

Assigner

dell

References

URL

Tags

https://www.dell.com/support/kbdoc/en-us/00022297…

vendor-advisory

Impacted products

	Vendor	Product	Version
	Dell	PowerEdge Platform	Affected: N/A , < 1.1.1 (semver) Affected: N/A , < 1.13.2 (semver) Affected: N/A , < 1.14.1 (semver) Affected: N/A , < 1.9.1 (semver) Affected: N/A , < 2.21.2 (semver) Affected: N/A , < 2.21.1 (semver) Affected: N/A , < 2.21.0 (semver) Affected: N/A , < 2.19.0 (semver) Affected: N/A , < 2.14.0 (semver) Affected: N/A , < 1.19.0 (semver) Affected: N/A , < 2.20.0 (semver)

Date Public ?

2024-03-12 06:30

Credits

Dell would like to thank codebreaker1337 as well as schur of BUPT, Dubhe Lab for reporting this issue.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T17:41:15.986Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-0161",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-12T13:56:13.395413Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-12T13:56:29.418Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerEdge Platform",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.1.1",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "1.13.2",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "1.14.1",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "1.9.1",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.21.2",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.21.1",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.21.0",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.19.0",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.14.0",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "1.19.0\u00a0",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            },
            {
              "lessThan": "2.20.0",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Dell would like to thank codebreaker1337 as well as schur of BUPT, Dubhe Lab for reporting this issue."
        }
      ],
      "datePublic": "2024-03-12T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM."
            }
          ],
          "value": "Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20: Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-03-13T16:04:12.678Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000222979/dsa-2024-006-security-update-for-dell-poweredge-server-bios-for-an-improper-smm-communication-buffer-verification-vulnerability"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2024-0161",
    "datePublished": "2024-03-13T16:04:12.678Z",
    "dateReserved": "2023-12-14T05:30:39.766Z",
    "dateUpdated": "2024-08-12T13:56:29.418Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2024-01989

CVE-2024-0161 (GCVE-0-2024-0161)

Tags

Sightings

Nomenclature