Description

Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Secure Boot bypass and arbitrary code execution.

INFO

Published Date :

2024-08-28T05:46:40.013Z

Last Modified :

2024-08-28T14:15:01.978Z

Source :

dell
AFFECTED PRODUCTS

The following products are affected by CVE-2024-39584 vulnerability.

Vendors Products
Dell
  • Alienware Area 51m R2
  • Alienware Area 51m R2 Firmware
  • Alienware Aurora R13
  • Alienware Aurora R13 Firmware
  • Alienware Aurora R15
  • Alienware Aurora R15 Amd
  • Alienware Aurora R15 Amd Firmware
  • Alienware Aurora R15 Firmware
  • Alienware Aurora Ryzen Edition R14
  • Alienware Aurora Ryzen Edition R14 Firmware
  • Alienware M15 R3
  • Alienware M15 R3 Firmware
  • Alienware M15 R4
  • Alienware M15 R4 Firmware
  • Alienware M17 R3
  • Alienware M17 R3 Firmware
  • Alienware M17 R4
  • Alienware M17 R4 Firmware
  • Alienware X14
  • Alienware X14 Firmware
  • Alienware X15 R1
  • Alienware X15 R1 Firmware
  • Alienware X15 R2
  • Alienware X15 R2 Firmware
  • Alienware X17 R1
  • Alienware X17 R1 Firmware
  • Alienware X17 R2
  • Alienware X17 R2 Firmware
  • Aurora R16
  • Aurora R16 Firmware
  • Inspiron 15 3510
  • Inspiron 15 3510 Firmware
  • Inspiron 15 3521
  • Inspiron 15 3521 Firmware
  • Inspiron 3502
  • Inspiron 3502 Firmware
  • Xps 8950
  • Xps 8950 Firmware
  • Xps 8960
  • Xps 8960 Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-39584.

URL Resource
https://www.dell.com/support/kbdoc/en-us/000227594/dsa-2024-354 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact