CVE Vulnerabilities

CVE-2024-0154

Access of Memory Location After End of Buffer

Published: Mar 13, 2024 | Modified: Mar 13, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.

Weakness

The product reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.

References