← back
CVE-2024-0160

CVE-2024-0160

CVSS 6.8 MEDIUMEPSS 0.2%CWE-863
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
12 Jun 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Dell · CPG BIOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.dell.com/support/kbdoc/en-us/000224763/dsa-2024-122