Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.DELL_BIOS_DSA-2024-167.NASLHistoryJun 21, 2024 - 12:00 a.m.
Dell Client BIOS Improper Input Validation (DSA-2024-167)
2024-06-2100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
dell inc
vulnerability
security patch
information disclosure
cve-2024-32856
iava
alienware
aurora
inspiron
xps
model
version
vendor
windows
5.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component.
A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(200814);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/24");
script_cve_id("CVE-2024-32856");
script_xref(name:"IAVA", value:"2024-A-0360");
script_name(english:"Dell Client BIOS Improper Input Validation (DSA-2024-167)");
script_set_attribute(attribute:"synopsis", value:
"The remote device is missing a vendor-supplied security patch");
script_set_attribute(attribute:"description", value:
"Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component.
A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information
disclosure.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://www.dell.com/support/kbdoc/en-us/000221745/dsa-2024-067-security-update-for-dell-client-platform-bios-for-an-improper-input-validation-vulnerability
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?470aeaa2");
script_set_attribute(attribute:"solution", value:
"Apply the security patch in accordance with the vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:N/I:C/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-32856");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/06/11");
script_set_attribute(attribute:"patch_publication_date", value:"2024/05/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/06/21");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("bios_get_info_wmi.nbin");
script_require_keys("BIOS/Model", "BIOS/Version", "BIOS/Vendor");
exit(0);
}
include('vcf_extras.inc');
var app_name = 'Dell Inc.';
var app_info = vcf::dell_bios_win::get_app_info(app:app_name);
var model = app_info['model'];
var fix = '';
# Check model
if (model)
{
if (model == 'Alienware Area 51m R2') fix = '1.26.0';
else if (model == 'Alienware Aurora R10') fix = '2.8.0';
else if (model == 'Alienware Aurora R11') fix = '1.0.24';
else if (model == 'Alienware Aurora R12') fix = '1.1.25';
else if (model == 'Alienware Aurora R13') fix = '1.19.0';
else if (model == 'Alienware Aurora R15') fix = '1.12.0';
else if (model == 'Alienware Aurora R15 AMD') fix = '1.13.0';
else if (model == 'Alienware Aurora Ryzen Edition R14') fix = '2.18.0';
else if (model == 'Alienware m15 R3') fix = '1.27.0';
else if (model == 'Alienware m15 R4') fix = '1.21.0';
else if (model == 'Alienware m17 R3') fix = '1.27.0';
else if (model == 'Alienware m17 R4') fix = '1.21.0';
else if (model == 'Alienware x14') fix = '1.18.0';
else if (model == 'Alienware x15 R1') fix = '1.22.0';
else if (model == 'Alienware x15 R2') fix = '1.20.0';
else if (model == 'Alienware x17 R1') fix = '1.22.0';
else if (model == 'Alienware x17 R2') fix = '1.20.0';
else if (model == 'AURORA R16') fix = '2.7.0';
else if (model == 'Inspiron 15 3510') fix = '1.19.0';
else if (model == 'Inspiron 15 3521') fix = '1.14.0';
else if (model == 'Inspiron 3502') fix = '1.16.0';
else if (model == 'XPS 8950') fix = '1.19.0';
else if (model == 'XPS 8960') fix = '2.6.0';
else audit(AUDIT_HOST_NOT, 'an affected model');
}
else
{
exit(0, 'The model of the device running the Dell BIOS could not be identified.');
}
var constraints = [{ 'fixed_version' : fix, 'fixed_display': fix + ' for ' + model }];
# Have a more useful audit message
app_info.app = 'Dell System BIOS for ' + model;
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Related
nvd
nvd
CVE-2024-32856
2024-06-13 12:15:10
cvelist
cvelist
CVE-2024-32856
2024-06-13 11:51:03
cve
cve
CVE-2024-32856
2024-06-13 12:15:10
5.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for DELL_BIOS_DSA-2024-167.NASL