CVE-2024-22453

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Mar 19, 2024
CWE ID 122

Summary

CVE-2024-22453 is a heap-based buffer overflow vulnerability present in the BIOS of Dell PowerEdge Servers. This issue enables a local high privileged attacker to write to unauthorized memory areas, potentially leading to unintended system behavior or data corruption. The successful exploitation requires the attacker to have administrative access to the server's BIOS settings. This vulnerability could pose a significant risk to organizations using affected Dell PowerEdge Servers and should be addressed promptly through the application of updates or patches provided by Dell.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share