{"id": "CVE-2024-38304", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "
[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 3.8, "attackVector": "LOCAL", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.0}, {"type": "Primary", "source": "
[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 4.0, "exploitabilityScore": 2.0}]}, "published": "2024-08-29T11:15:26.187", "references": [{"url": "https://www.dell.com/support/kbdoc/en-us/000228137/dsa-2024-310-security-update-for-dell-poweredge-server-for-access-of-memory-location-after-end-of-buffer-vulnerability", "tags": ["Vendor Advisory"], "source": "
[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "
[email protected]", "description": [{"lang": "en", "value": "CWE-788"}]}, {"type": "Primary", "source": "
[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure."}, {"lang": "es", "value": " Dell PowerEdge Platform, versi\u00f3n de BIOS de Intel 14G anterior a 2.22.x, contiene una vulnerabilidad de acceso a la ubicaci\u00f3n de memoria despu\u00e9s del final del b\u00fafer. Un atacante con privilegios reducidos y acceso local podr\u00eda aprovechar esta vulnerabilidad, lo que provocar\u00eda la divulgaci\u00f3n de informaci\u00f3n."}], "lastModified": "2024-12-20T14:41:01.273", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_xcxr2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9422F204-CC53-42AD-AE7D-2ABA8B77D6EB", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_xcxr2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2FF8CC72-C32F-476D-86D3-CFF022185D76"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_xc940_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58B9D50B-F714-4D09-8FFA-6F17D0E2CAB9", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_xc940_system:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8FF8BE36-E551-48E1-B7EF-0BC9FE85645F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_xc740xd2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2760DD11-23AA-408B-886F-7F680DAB6883", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_xc740xd2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0127228B-FBC4-4C66-AFA1-749C151F79C5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_xc740xd_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "115C48E2-BEC8-4BBF-B8A7-C7F22C02718E", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_xc740xd_system:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F3C19A67-F880-495B-BDB2-8371BD9CA9F7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_xc640_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A35F1DBD-96B3-415F-BDDB-23C2CB038870", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_xc640_system:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A687A731-32FF-4FCF-BCAD-56B8AE59C3A7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_xc_core_6420_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE8B52C5-C718-4A2B-99B3-A20D6D70DF83", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_xc_core_6420_system:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D991914F-E199-4E0F-8159-C1A9F254B201"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_storage_nx3340_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A21E30F3-0922-4001-B34C-2D9DA30F6C94", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_storage_nx3340:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "66F375D2-85E4-4994-AE90-99D25A50F9AD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:emc_storage_nx3240_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCF6F72F-BF85-45B8-95F7-9B35F5872446", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:emc_storage_nx3240:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EFCDCB3C-4995-4211-8592-3D7F94098A26"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_xe7440_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3917FB0-E024-40CC-8A50-111717078657", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_xe7440:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EB265071-7294-4317-A854-0D90844CDC17"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_xe7420_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C67CF5FC-992D-4682-BC65-973535CF34D0", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_xe7420:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DB402EFE-DEFF-40D1-B1C8-8A7D6923669E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_xe2420_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A2870A9-6950-4699-80EA-D3869F9FC362", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_xe2420:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "30D12E41-8F03-435C-B137-CD3465923E5C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:dss_8440_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DF94051-33DA-4328-9C08-DD8FD8750187", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:dss_8440:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "239C2103-C4BB-4C6A-8E09-C6F7D52024D3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_c4140_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9269B40-9256-427A-802A-7018EFF7B118", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_c4140:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F9ACC9B8-C046-4304-BA58-7D6D7945BE95"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_mx840c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEC44355-9774-4A3A-9925-A8FB0939CB75", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_mx840c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E4305D0F-CB59-49D5-8D21-8ECC3342C36C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_mx740c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D110671-78CB-4FBE-94D6-C682F79F3A48", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_mx740c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "757039D5-60B9-40B0-B719-38E27409BDDE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_m640_\\(for_pe_vrtx\\)_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4357270-0F3F-4F55-B4B3-8B7343536C9D", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_m640_\\(for_pe_vrtx\\):-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7CC31749-2B2C-42C4-AF50-A6E2354A99C8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_m640_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9F22775-1E65-412D-A8DF-57B0E79A0BC7", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_m640:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5F8B50A1-577F-451E-8D03-C8A6A78000DC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_fc640_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D880CB92-4452-421A-9EB8-77104D835D9F", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_fc640:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E9C59D4B-1122-4782-A686-559E7DF8C3C9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_c6420_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACCFE436-0DF3-4373-B630-39FF5F60E87F", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_c6420:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "027D86DE-076F-4CE9-9DE9-E6976C655E8F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_t640_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D171813-C2A2-47EF-B97D-922AF36A9389", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_t640:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1DEC0235-DDA1-4EE4-B3F8-512F1B29AFC6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r940xa_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB9DA2A4-227B-4280-A63C-CEE27814A7CE", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r940xa:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3D143853-3D62-4AD7-B899-F726036A34D2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r840_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99AC63E2-0A92-4ED8-BD31-06A9793FDAC3", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r840:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E058B9C6-CD1C-42F5-8781-05450254E9E5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r740xd2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C00D4860-3230-459A-A80B-56DBE8DED96B", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r740xd2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A5395D3F-58D4-49F9-AA2F-0D5C6D8C4651"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_xr2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E5D3362-19FC-44C2-A939-576ECC795152", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_xr2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "88EC4390-C39F-4E56-9631-B8A22986690D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_t440_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA362A72-0CEB-4357-8475-F6CC922F3F49", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_t440:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "28F97F1A-B41E-4CC5-B668-8C194CE2C29E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r440_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CDDB18A-5A3C-4DA6-91B1-4AF578D87AA8", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r440:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EBC3957E-791A-4052-A9C4-F3ECBD746E37"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r540_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80942AC6-AF8E-4313-9A6E-D73A8BF41A64", "versionEndExcluding": "2.22.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r540:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "73B27F54-3CE3-4A5F-BBA1-2C6ED5316B47"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r940_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C019A625-3642-41C7-9DF4-72B124036AAB", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r940:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B581E1DE-4E94-49E5-B5CF-2A94B2570708"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r640_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2F4E39A-0FD8-4C21-9FDD-9F2F778FE9FA", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r640:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "81416C16-D7FA-4165-BB0E-6458A4EA5AEE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r740xd_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF2A848F-5F25-4FF5-8DD6-65D3DC0F5959", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r740xd:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "868ECD3F-77CD-4F5D-86E5-61689E4C5BA0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:poweredge_r740_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF25A82C-5B44-41D5-88B6-82C5B6D22CF2", "versionEndExcluding": "2.22.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:poweredge_r740:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE562535-3D9B-4A82-AC0D-6A2225E63E8D"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "
[email protected]"}
