Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Article Number: 000221102

DSA-2024-020: Security Update for Dell Client Platform for an Improper Input Validation Vulnerability

Summary: Dell Client Platform remediation is available for an Improper Input Validation Vulnerability that could be exploited by malicious users to compromise the affected systems.

Article Content

Impact

High

Details

Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2024-22429 Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution. 7.5
 		 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HThis hyperlink is taking you to a website outside of Dell Technologies.
Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2024-22429 Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution. 7.5
 		 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HThis hyperlink is taking you to a website outside of Dell Technologies.
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products and Remediation

Product Software/Firmware Affected Version Remediated Version Release Date (MM/DD/YYYY) Link
Dell Precision 5820 Tower BIOS Versions prior to 2.36.0 Versions 2.36.0 or later 05/10/2024 Go to the Drivers & Downloads site for updates
Edge Gateway 3000 series BIOS Versions prior to 1.18.0 Versions 1.18.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Latitude 12 Rugged Extreme 7214 BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 13 3380 BIOS Versions prior to 1.27.0 Versions 1.27.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 3180 BIOS Versions prior to 1.29.0 Versions 1.29.0 or later 05/07/2024 Go to the Drivers & Downloads site for updates
Latitude 3189 BIOS Versions prior to 1.29.0 Versions 1.29.0 or later 05/07/2024 Go to the Drivers & Downloads site for updates
Latitude 3300 BIOS Versions prior to 1.28.0 Versions 1.28.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 3390 2-in-1 BIOS Versions prior to 1.31.0 Versions 1.31.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 5414 Rugged BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 5420 Rugged BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 5424 Rugged BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7212 Rugged Extreme Tablet BIOS Versions prior to 1.50.0 Versions 1.50.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7414 Rugged BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7424 Rugged Extreme BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Precision 3420 Tower BIOS Versions prior to 2.30.0 Versions 2.30.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Precision 3620 Tower BIOS Versions prior to 2.30.0 Versions 2.30.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Wyse 5070 BIOS Versions prior to 1.31.0 Versions 1.31.0 or later 05/10/2024 Go to the Drivers & Downloads site for updates
Product Software/Firmware Affected Version Remediated Version Release Date (MM/DD/YYYY) Link
Dell Precision 5820 Tower BIOS Versions prior to 2.36.0 Versions 2.36.0 or later 05/10/2024 Go to the Drivers & Downloads site for updates
Edge Gateway 3000 series BIOS Versions prior to 1.18.0 Versions 1.18.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Latitude 12 Rugged Extreme 7214 BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 13 3380 BIOS Versions prior to 1.27.0 Versions 1.27.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 3180 BIOS Versions prior to 1.29.0 Versions 1.29.0 or later 05/07/2024 Go to the Drivers & Downloads site for updates
Latitude 3189 BIOS Versions prior to 1.29.0 Versions 1.29.0 or later 05/07/2024 Go to the Drivers & Downloads site for updates
Latitude 3300 BIOS Versions prior to 1.28.0 Versions 1.28.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 3390 2-in-1 BIOS Versions prior to 1.31.0 Versions 1.31.0 or later 05/06/2024 Go to the Drivers & Downloads site for updates
Latitude 5414 Rugged BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 5420 Rugged BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 5424 Rugged BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7212 Rugged Extreme Tablet BIOS Versions prior to 1.50.0 Versions 1.50.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7414 Rugged BIOS Versions prior to 1.46.0 Versions 1.46.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Latitude 7424 Rugged Extreme BIOS Versions prior to 1.32.0 Versions 1.32.0 or later 05/08/2024 Go to the Drivers & Downloads site for updates
Precision 3420 Tower BIOS Versions prior to 2.30.0 Versions 2.30.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Precision 3620 Tower BIOS Versions prior to 2.30.0 Versions 2.30.0 or later 05/13/2024 Go to the Drivers & Downloads site for updates
Wyse 5070 BIOS Versions prior to 1.31.0 Versions 1.31.0 or later 05/10/2024 Go to the Drivers & Downloads site for updates
The Affected Products and Remediation table above may not be a comprehensive list of all affected supported versions and may be updated as more information becomes available.

Workarounds and Mitigations

None

Acknowledgements

CVE-2024-22429: Dell would like to thank schur of BUPT, Dubhe Lab for reporting this issue.
 

Revision History

RevisionDateDescription
1.02024-05-14Initial Release
2.02024-05-17Added Revision history section

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Information

Article Properties

Affected Product
Dell Edge Gateway 3000 Series, Latitude 3180, Latitude 3189, Latitude 7212 Rugged Extreme Tablet, Latitude 7214 Rugged Extreme, Latitude 3300, Latitude 13 3380, Latitude 3390 2-in-1, Latitude 5414 Rugged, Latitude 5420 Rugged, Latitude 5424 Rugged , Latitude 7414 Rugged, Latitude 7424 Rugged Extreme, Precision 5820 Tower, Dell Precision Tower 3420, Dell Precision Tower 3620, Wyse 5070 Thin Client ...
Last Published Date

17 May 2024

Version

2

Article Type

Dell Security Advisory

Back to Top