Dell Product Security Update Advisory (CVE-2024-39584)
Overview
An update has been released to address vulnerabilities in Dell Products. Users of the affected versions are advised to update to the latest version.
Affected Products
cVE-2024-39584
- Alienware Area 51m R2 versions: ~ 1.29.0 (excluded)
- Alienware Aurora R15 AMD version: ~ 1.15.0 (excluded)
- Alienware m15 R3 version: ~ 1.29.0 (excluded)
- Alienware m15 R4 version: ~ 1.24.0 (excluded)
- Alienware m17 R3 versions: ~ 1.29.0 (excluded)
- Alienware m17 R4 versions: ~ 1.24.0 (excluded)
- Alienware x14 versions: ~ 1.21.0 (excluded)
- Alienware x15 R1 versions: ~ 1.24.0 (excluded)
- Alienware x15 R2 versions: ~ 1.22.0 (excluded)
- Alienware x17 R1 versions: ~ 1.24.0 (excluded)
- Alienware x17 R2 versions: ~ 1.22.0 (excluded)
Resolved Vulnerabilities
Dell Client Platform BIOS contains a default encryption key usage vulnerability that could potentially be exploited by an attacker to bypass secure boot and execute arbitrary code (CVE-2024-39584)
Vulnerability Patches
Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2024-39584
- Alienware Area 51m R2 version: 1.29.0 or later version
- Alienware Aurora R15 AMD version: 1.15.0 or later version
- Alienware m15 R3 version: 1.29.0 or later version
- Alienware m15 R4 version: 1.24.0 or later version
- Alienware m17 R3 version: 1.29.0 or later version
- Alienware m17 R4 version: 1.24.0 or later version
- Alienware x14 version: 1.21.0 or later version
- Alienware x15 R1 version: 1.24.0 or later version
- Alienware x15 R2 version: 1.22.0 or later version
- Alienware x17 R1 version: 1.24.0 or later version
- Alienware x17 R2 version: 1.22.0 or later version
Referenced Sites
[1] CVE-2024-39584 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-39584
[2] DSA-2024-354: Security Update for a Dell Client Platform BIOS for a Use of Default Cryptographic Key Vulnerability