CVE-2024-52541

HIGH

Dell Client Platform BIOS - Privilege Escalation

Title source: llm

Description

Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.

References (1)

[Vendor Advisory] https://www.dell.com/support/kbdoc/en-us/000258429/dsa-2025-021

Scores

CVSS v3 8.2

EPSS 0.0004

EPSS Percentile 13.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-1390

Status published

Products (50)

dell/alienware_m15_r6_firmware < 1.34.0

dell/alienware_m15_r7_firmware < 1.28.0

dell/alienware_m16_r1_firmware < 1.21.0

dell/alienware_m16_r2_firmware < 1.8.0

dell/alienware_m18_r1_firmware < 1.21.0

dell/alienware_m18_r2_firmware < 1.9.0

dell/alienware_x14_r2_firmware < 1.17.0

dell/alienware_x16_r1_firmware < 1.17.0

dell/alienware_x16_r2_firmware < 1.7.0

dell/chengming_3900_firmware < 1.26.0

... and 40 more

Published Feb 19, 2025

Tracked Since Feb 18, 2026