Vulnerability Database

309,136

Total vulnerabilities in the database

CVE-2024-39584

Dell Client Platform BIOS contains a Use of Default Cryptographic Key Vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Secure Boot bypass and arbitrary code execution.

Published: Aug 28, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-39584
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.2
AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CWEs:

CWE-1392

Affected Software
References

Software	From	Fixed in
dell / xps_8960_firmware	-	2.12.0
dell / xps_8950_firmware	-	1.21.0
dell / inspiron_3502_firmware	-	1.18.0
dell / inspiron_15_3521_firmware	-	1.16.0
dell / inspiron_15_3510_firmware	-	1.21.0
dell / aurora_r16_firmware	-	2.13.0
dell / alienware_x17_r2_firmware	-	1.22.0
dell / alienware_x17_r1_firmware	-	1.24.0
dell / alienware_x15_r2_firmware	-	1.22.0
dell / alienware_x15_r1_firmware	-	1.24.0
dell / alienware_x14_firmware	-	1.21.0
dell / alienware_m17_r4_firmware	-	1.24.0
dell / alienware_m17_r3_firmware	-	1.29.0
dell / alienware_m15_r4_firmware	-	1.24.0
dell / alienware_m15_r3_firmware	-	1.29.0
dell / alienware_aurora_ryzen_edition_r14_firmware	-	2.19.1
dell / alienware_aurora_r15_amd_firmware	-	1.15.0
dell / alienware_aurora_r15_firmware	-	1.17.0
dell / alienware_aurora_r13_firmware	-	1.21.0
dell / alienware_area_51m_r2_firmware	-	1.29.0

https://www.dell.com/support/kbdoc/en-us/000227594/dsa-2024-354

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo