CVE-2024-0158
high-risk
Published 2024-07-02
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges
Do I need to act?
-
0.04% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.1/10
Medium
LOCAL
/ LOW complexity
Affected Products (20)
Alienware M16 R1 Firmware
Alienware M18 R1 Firmware
Alienware M18 R2 Firmware
Alienware X14 R2 Firmware
Alienware X16 R1 Firmware
Alienware X16 R2 Firmware
G16 7630 Firmware
Affected Vendors
References (2)
50
/ 100
high-risk
Severity
17/34 · Moderate
Exploitability
0/34 · Minimal
Exposure
33/34 · Critical