4.4
CVE-2025-29989
- EPSS 0.01%
- Published 10.04.2025 02:15:30
- Last modified 18.08.2025 12:42:51
- Source security_alert@emc.com
- Teams watchlist Login
- Open Login
Dell Client Platform BIOS contains a Security Version Number Mutable to Older Versions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to BIOS upgrade denial.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Dell ≫ Precision 5820 Tower Firmware Version < 2.42.0
Dell ≫ Precision 7820 Tower Firmware Version < 2.46.0
Dell ≫ Precision 7920 Tower Firmware Version < 2.46.0
Dell ≫ Precision 7865 Tower Firmware Version < 1.18.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.01 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.4 | 0.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
|
| security_alert@emc.com | 3.1 | 0.6 | 2.5 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L
|
CWE-1328 Security Version Number Mutable to Older Versions
Security-version number in hardware is mutable, resulting in the ability to downgrade (roll-back) the boot firmware to vulnerable code versions.