Access of Memory Location After End of Buffer

CVE-2024-42425

Low

3.8/10

Summary

Dell Precision Rack, 14G Intel BIOS versions prior to 2.22.2, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: CHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: LOW
Availability Impact: NONE

CWE-788 - Access of Memory Location After End of Buffer

The software reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.

References

Advisory Timeline

Published Sep 10, 2024

Access of Memory Location After End of Buffer

CVE-2024-42425

Summary

CWE-788 - Access of Memory Location After End of Buffer

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS