Vulnerabilities

CVE-2024-0171

by Fred · 25/06/2024

Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. A local low privileged attacker could potentially exploit this vulnerability to gain access to otherwise unauthorized resources.

More information : https://www.dell.com/support/kbdoc/en-us/000226253/dsa-2024-039-security-update-for-dell-amd-based-poweredge-server-vulnerability

Attack vector : LOCAL
Attack complexity : HIGH
Privileges required : LOW
User interaction : NONE
Confidentiality impact : LOW
Integrity impact : LOW
Base score : 5.3
Base severity : MEDIUM
Exploitability score : 1.1
Impact score : 3.7

Similar

Tags: Cybersecurity Alert