Main Vulnerability Database SB2025052049

SB2025052049 - Multiple vulnerabilities in Dell Client Platform BIOS

Published: May 20, 2025

Security Bulletin ID SB2025052049

Severity

Low

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Uncaught Exception (CVE-ID: CVE-2025-20054)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an uncaught exception in the core management mechanism for some Intel Processors. A local user can perform a denial of service (DoS) attack.

2) Information disclosure (CVE-ID: CVE-2024-43420)

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to shared microarchitectural predictor state that influences transient execution. A local user can gain access to sensitive information.

Remediation

Install update from vendor's website.

References

https://www.dell.com/support/kbdoc/nl-nl/000272449/dsa-2025-048

Vulnerable Software

XPS 8950: before 1.26.0
Vostro 15 3530: before 1.20.0
Vostro 14 3430: before 1.20.0
Precision 7960 Tower: before 2.10.0
Precision 5860 Tower: before 2.10.0
Inspiron 16 Plus 7630: before 1.21.0
Inspiron 15 3530: before 1.20.0
Inspiron 14 Plus 7430: before 1.21.0
Alienware M18 R2: before 1.14.0
Alienware m18 R1: before 1.26.0
Alienware m16 R1: before 1.26.0
Alienware Aurora R13: before 1.26.0
XPS 8940: before 2.26.0
XPS 15 9510: before 1.37.0
XPS 15 9500: before 1.34.0
XPS 15 7590: before 1.35.0
XPS 13 9310 2-in-1: before 2.32.0
XPS 13 9310: before 3.30.0
XPS 13 9305: before 1.29.0
Vostro 5890: before 1.33.0
Vostro 5880: before 1.32.0
Vostro 3890: before 1.32.0
Vostro 3888: before 2.32.0
Vostro 3881: before 2.32.0
Vostro 3690: before 1.32.0
Vostro 3681: before 2.32.0
Vostro 3500: before 1.37.0
Vostro 3400: before 1.37.0
Vostro 15 7510: before 1.30.0
Vostro 15 5510: before 2.32.0
Vostro 15 3510: before 1.36.0
Vostro 14 5410: before 2.32.0
Vostro 13 5310: before 2.33.0
Precision 7760: before 1.39.0
Precision 7750: before 1.37.0
Precision 7730: before 1.40.1
Precision 7560: before 1.39.0
Precision 7550: before 1.37.0
Precision 7540: before 1.39.1
Precision 5750: before 1.34.0
Precision 5560: before 1.37.0
Precision 5550: before 1.34.0
Precision 5540: before 1.35.0
Precision 3930 Rack: before 2.35.0
Precision 3650 Tower: before 1.38.0
Precision 3640: before 1.37.0
Precision 3560: before 1.43.0
Precision 3551: before 1.35.0
Precision 3550: before 1.35.0
Precision 3541: before 1.38.0
Precision 3540: before 1.38.0
Precision 3450: before 1.33.0
Precision 3440: before 1.32.0
Precision 3240 Compact: before 1.33.0
OptiPlex 7780 All-in-One: before 1.37.0
OptiPlex 7770 All-In-One: before 1.35.0
OptiPlex 7490 All-in-One: before 1.37.0
OptiPlex 7470 All-In-One: before 1.35.0
Optiplex 7090 Ultra: before 1.34.0
OptiPlex 7090 Tower: before 1.33.0
OptiPlex 7080: before 1.32.0
OptiPlex 7071: before 1.32.0
OptiPlex 7070 Ultra: before 1.30.0
OptiPlex 5490 All-In-One: before 1.37.0
OptiPlex 5480 All-In-One: before 1.37.0
OptiPlex 5270 All-In-One: before 1.35.0
OptiPlex 5090 Micro / OptiPlex 5090 Small Form Factor / OptiPlex 5090 Tower: before 1.33.0
OptiPlex 5080: before 1.29.0
OptiPlex 5070: before 1.32.0
OptiPlex 3280 All-in-One: before 1.36.0
OptiPlex 3090 Ultra: before 1.34.0
OptiPlex 3090: before 2.23.0
OptiPlex 3080: before 2.29.0
OptiPlex 3070: before 1.32.0
Latitude 9520: before 1.39.0
Latitude 9510 2in1: before 1.34.0
Latitude 9420: before 1.38.0
Latitude 9410: before 1.35.0
Latitude 7520: before 1.42.0
Latitude 7420: before 1.42.0
Latitude 7410: before 1.37.0
Latitude 7400 2-in-1: before 1.34.0
Latitude 7400: before 1.39.0
Latitude 7330 Rugged Laptop: before 1.35.0
Latitude 7320 Detachable: before 1.39.0
Latitude 7320: before 1.42.0
Latitude 7310: before 1.37.0
Latitude 7300: before 1.39.0
Latitude 7210 2-in-1: before 1.36.0
Latitude 7200 2-in-1: before 1.35.0
Latitude 5520: before 1.43.0
Latitude 5511: before 1.35.0
Latitude 5510: before 1.35.0
Latitude 5501: before 1.38.0
Latitude 5500: before 1.38.0
Latitude 5430 Rugged Laptop: before 1.35.0
Latitude 5421: before 1.38.0
Latitude 5420: before 1.45.0
Latitude 5411: before 1.35.0
Latitude 5410: before 1.35.0
Latitude 5401: before 1.38.0
Latitude 5320: before 1.43.0
Latitude 5310 2-IN-1: before 1.27.0
Latitude 5310: before 1.27.0
Latitude 5300 2-IN-1: before 1.35.0
Latitude 5300: before 1.35.0
Latitude 3510: before 1.33.0
Latitude 3500: before 1.37.0
Latitude 3410: before 1.33.0
Latitude 3400: before 1.37.0
Latitude 3320: before 1.35.0
Latitude 3310 2-in-1: before 1.28.0
Latitude 3310: before 1.29.0
Latitude 3301: before 1.35.0
Latitude 3190 2-In-1: before 1.38.0
Latitude 3190: before 1.38.0
Latitude 3140 2in1: before 1.24.0
Latitude 3140: before 1.24.0
Inspiron 7700 All-In-One: before 1.36.0
Inspiron 5401 AIO: before 1.36.0
Inspiron 5400/5401: before 1.36.0
Inspiron 3891: before 1.32.0
Inspiron 3502: before 1.22.0
Inspiron 3501: before 1.37.0
Inspiron 16 7610: before 1.30.0
Inspiron 15 7510: before 1.30.0
Inspiron 15 5510/5518: before 2.32.0
Inspiron 15 3521: before 1.20.0
Inspiron 15 3511: before 1.36.0
Inspiron 15 3510: before 1.25.0
Inspiron 14 5410 2-in-1: before 2.32.0
Inspiron 14 5410/5418: before 2.32.0
Inspiron 13 5310: before 2.33.0
Dell Precision 7920 Tower: before 2.46.0
Dell Precision 7820 Tower: before 2.46.0
Dell Precision 5820 Tower: before 2.42.0
Dell Precision 3431 Tower: before 1.33.0
Dell G5 5000: before 1.27.0
Dell G15 5511: before 1.35.0
Dell G15 5510: before 1.31.0
ChengMing 3991: before 1.32.0
ChengMing 3990: before 1.32.0
Alienware x17 R1: before 1.28.0
Alienware x15 R1: before 1.28.0
Alienware m17 R4: before 1.27.0
Alienware m17 R3: before 1.31.0
Alienware m15 R6: before 1.36.0
Alienware m15 R4: before 1.27.0
Alienware Aurora R12: before 1.1.29
Alienware Area 51m R2: before 1.31.0

SB2025052049 - Multiple vulnerabilities in Dell Client Platform BIOS

Breakdown by Severity

Description

Remediation

References

Please verify you're human