CVE & CISA-KEV Catalog

CVE-2024-0154

LOW
3.8
CVSS v3
NVD

Description

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.

How to fix

Remediation Available
dss 8440 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
emc xc core 6420 system firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
emc xc core xc450 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
emc xc core xc640 system firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
emc xc core xc650 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
emc xc core xc6520 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
emc xc core xc740xd2 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
emc xc core xc740xd system firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
emc xc core xc750 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
emc xc core xc750xa firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
emc xc core xc7525 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
emc xc core xc940 system firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
emc xc core xcxr2 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
nx3230 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
nx3240 firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
nx3330 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
nx3340 firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
nx430 firmwareNVD
Affected:< 2.20.0Fixed in:2.20.0CVE-2024-0154derived from NVD
nx440 firmwareNVD
Affected:< 2.16.0Fixed in:2.16.0CVE-2024-0154derived from NVD
poweredge c4130 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge c4140 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge c6320 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge c6420 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge c6520 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge c6525 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge c6615 firmwareNVD
Affected:< 1.2.3Fixed in:1.2.3CVE-2024-0154derived from NVD
poweredge c6620 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge fc430 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge fc630 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge fc640 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge fc830 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge hs5610 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge hs5620 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge m630 \(pe vrtx\) firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge m630 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge m640 \(pe vrtx\) firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge m640 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge m830 \(pe vrtx\) firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge m830 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge mx740c firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge mx750c firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge mx760c firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge mx840c firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge r230 firmwareNVD
Affected:< 2.20.0Fixed in:2.20.0CVE-2024-0154derived from NVD
poweredge r240 firmwareNVD
Affected:< 2.16.0Fixed in:2.16.0CVE-2024-0154derived from NVD
poweredge r250 firmwareNVD
Affected:< 1.9.1Fixed in:1.9.1CVE-2024-0154derived from NVD
poweredge r330 firmwareNVD
Affected:< 2.20.0Fixed in:2.20.0CVE-2024-0154derived from NVD
poweredge r340 firmwareNVD
Affected:< 2.16.0Fixed in:2.16.0CVE-2024-0154derived from NVD
poweredge r350 firmwareNVD
Affected:< 1.9.1Fixed in:1.9.1CVE-2024-0154derived from NVD
poweredge r430 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge r440 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge r450 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r530 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge r540 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge r550 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r630 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge r640 firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
poweredge r650 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r650xs firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r6515 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge r6525 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge r660 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r660xs firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r6615 firmwareNVD
Affected:< 1.7.2Fixed in:1.7.2CVE-2024-0154derived from NVD
poweredge r6625 firmwareNVD
Affected:< 1.7.2Fixed in:1.7.2CVE-2024-0154derived from NVD
poweredge r730 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge r730xd firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge r740 firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
poweredge r740xd2 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge r740xd firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
poweredge r750 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r750xa firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r750xs firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge r7515 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge r7525 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge r760 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r760xa firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r760xd2 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r760xs firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge r7615 firmwareNVD
Affected:< 1.7.2Fixed in:1.7.2CVE-2024-0154derived from NVD
poweredge r7625 firmwareNVD
Affected:< 1.7.2Fixed in:1.7.2CVE-2024-0154derived from NVD
poweredge r830 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2024-0154derived from NVD
poweredge r840 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge r860 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge r930 firmwareNVD
Affected:< 2.14.0Fixed in:2.14.0CVE-2024-0154derived from NVD
poweredge r940 firmwareNVD
Affected:< 2.21.2Fixed in:2.21.2CVE-2024-0154derived from NVD
poweredge r940xa firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge r960 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge t130 firmwareNVD
Affected:< 2.20.0Fixed in:2.20.0CVE-2024-0154derived from NVD
poweredge t140 firmwareNVD
Affected:< 2.16.0Fixed in:2.16.0CVE-2024-0154derived from NVD
poweredge t150 firmwareNVD
Affected:< 1.9.1Fixed in:1.9.1CVE-2024-0154derived from NVD
poweredge t330 firmwareNVD
Affected:< 2.20.0Fixed in:2.20.0CVE-2024-0154derived from NVD
poweredge t340 firmwareNVD
Affected:< 2.16.0Fixed in:2.16.0CVE-2024-0154derived from NVD
poweredge t350 firmwareNVD
Affected:< 1.9.1Fixed in:1.9.1CVE-2024-0154derived from NVD
poweredge t430 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge t440 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge t550 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge t560 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
poweredge t630 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
poweredge t640 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge xe2420 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge xe7420 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge xe7440 firmwareNVD
Affected:< 2.21.0Fixed in:2.21.0CVE-2024-0154derived from NVD
poweredge xe8545 firmwareNVD
Affected:< 2.14.1Fixed in:2.14.1CVE-2024-0154derived from NVD
poweredge xe8640 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xe9640 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xe9680 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xr11 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge xr12 firmwareNVD
Affected:< 1.13.2Fixed in:1.13.2CVE-2024-0154derived from NVD
poweredge xr2 firmwareNVD
Affected:< 2.21.1Fixed in:2.21.1CVE-2024-0154derived from NVD
poweredge xr4510c firmwareNVD
Affected:< 1.14.1Fixed in:1.14.1CVE-2024-0154derived from NVD
poweredge xr4520c firmwareNVD
Affected:< 1.14.1Fixed in:1.14.1CVE-2024-0154derived from NVD
poweredge xr5610 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xr7620 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xr8610t firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
poweredge xr8620t firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2024-0154derived from NVD
xc430 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
xc630 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
xc6320 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
xc730 firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
xc730xd firmwareNVD
Affected:< 2.19.0Fixed in:2.19.0CVE-2024-0154derived from NVD
xc core xc660 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
xc core xc760 firmwareNVD
Affected:< 2.0.0Fixed in:2.0.0CVE-2024-0154derived from NVD
xc core xc7625 firmwareNVD
Affected:< 1.7.2Fixed in:1.7.2CVE-2024-0154derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeChanged

Impact

ConfidentialityLow
IntegrityNone
AvailabilityNone

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Exploit Intelligence

0.20%probability of exploitation in 30 days
10thpercentile

Low risk: more likely to be exploited than 10% of all known CVEs.

References

Vendor Advisory1
Embed a live status badge for CVE-2024-0154
CVE-2024-0154 severity badge

Markdown

[![CVE-2024-0154](https://tridentstack.com/cve/badge/CVE-2024-0154.svg)](https://tridentstack.com/cve/CVE-2024-0154)

HTML

<a href="https://tridentstack.com/cve/CVE-2024-0154"><img src="https://tridentstack.com/cve/badge/CVE-2024-0154.svg" alt="CVE-2024-0154"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-01-31.