CVE-2024-52541

high-risk

Published 2025-02-19

Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

Do I need to act?

0.04% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.2/10 High

LOCAL / LOW complexity

Affected Products (20)

Alienware M15 R6 Firmware

Alienware M15 R7 Firmware

Alienware M16 R1 Firmware

Alienware M16 R2 Firmware

Alienware M18 R1 Firmware

Latitude 5300 2-In-1 Firmware

Latitude 5310 Firmware

Latitude 5310 2-In-1 Firmware

Latitude 5320 Firmware

Latitude 5330 Firmware

Latitude 5340 Firmware

Latitude 5350 Firmware

Latitude 5400 Firmware

Latitude 5401 Firmware

Latitude 5410 Firmware

Latitude 5411 Firmware

Latitude 5420 Firmware

Latitude 5420 Rugged Firmware

Latitude 5421 Firmware

Latitude 5424 Rugged Firmware

Affected Vendors

Dell

References (1)

Vendor Advisory https://www.dell.com/support/kbdoc/en-us/000258429/dsa-2025-021

/ 100

high-risk

Severity 25/34 · High

Exploitability 0/34 · Minimal

Exposure 33/34 · Critical