Poweredge_r940_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Poweredge_r940_firmware
(Dell)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	12

Date	Id	Summary	Products	Score	Patch	Annotated
2024-03-13	CVE-2024-0161	Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an Improper SMM communication buffer verification vulnerability. A local low privileged attacker could potentially exploit this vulnerability leading to arbitrary writes to SMRAM.	Dss_8440_firmware, Emc_storage_nx3240_firmware, Emc_storage_nx3340_firmware, Emc_xc_core_6420_firmware, Emc_xc_core_xc450_firmware, Emc_xc_core_xc640_firmware, Emc_xc_core_xc650_firmware, Emc_xc_core_xc6520_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_firmware, Emc_xc_core_xc750_firmware, Emc_xc_core_xc750xa_firmware, Emc_xc_core_xc940_firmware, Emc_xc_core_xcxr2_firmware, Poweredge_c4130_firmware, Poweredge_c4140_firmware, Poweredge_c6320_firmware, Poweredge_c6420_firmware, Poweredge_c6520_firmware, Poweredge_fc430_firmware, Poweredge_fc630_firmware, Poweredge_fc640_firmware, Poweredge_fc830_firmware, Poweredge_m630_\(Pe_vrtx\)_firmware, Poweredge_m630_firmware, Poweredge_m640_\(Pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_m830_\(Pe_vrtx\)_firmware, Poweredge_m830_firmware, Poweredge_mx740c_firmware, Poweredge_mx750c_firmware, Poweredge_mx840c_firmware, Poweredge_r230_firmware, Poweredge_r250_firmware, Poweredge_r330_firmware, Poweredge_r350_firmware, Poweredge_r360_firmware, Poweredge_r430_firmware, Poweredge_r440_firmware, Poweredge_r450_firmware, Poweredge_r530_firmware, Poweredge_r540_firmware, Poweredge_r550_firmware, Poweredge_r630_firmware, Poweredge_r640_firmware, Poweredge_r650_firmware, Poweredge_r650xs_firmware, Poweredge_r730_firmware, Poweredge_r730xd_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r750_firmware, Poweredge_r750xa_firmware, Poweredge_r750xs_firmware, Poweredge_r830_firmware, Poweredge_r840_firmware, Poweredge_r930_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t130_firmware, Poweredge_t150_firmware, Poweredge_t330_firmware, Poweredge_t350_firmware, Poweredge_t360_firmware, Poweredge_t430_firmware, Poweredge_t440_firmware, Poweredge_t550_firmware, Poweredge_t630_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xr11_firmware, Poweredge_xr12_firmware, Poweredge_xr2_firmware, Poweredge_xr4510c_firmware, Poweredge_xr4520c_firmware, Storage_nx3230_firmware, Storage_nx3330_firmware, Storage_nx430_firmware, Xc430_firmware, Xc630_firmware, Xc6320_firmware, Xc730_firmware, Xc730xd_firmware	8.4
2024-04-03	CVE-2024-0172	Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.	Dss_8440_firmware, Emc_storage_nx3240_firmware, Emc_storage_nx3340_firmware, Emc_xc_core_6420_system_firmware, Emc_xc_core_xc450_firmware, Emc_xc_core_xc640_system_firmware, Emc_xc_core_xc650_firmware, Emc_xc_core_xc6520_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_system_firmware, Emc_xc_core_xc750_firmware, Emc_xc_core_xc750xa_firmware, Emc_xc_core_xc7525_firmware, Emc_xc_core_xc940_system_firmware, Emc_xc_core_xcxr2_firmware, Nx440_firmware, Poweredge_c4140_firmware, Poweredge_c6420_firmware, Poweredge_c6520_firmware, Poweredge_c6525_firmware, Poweredge_c6620_firmware, Poweredge_fc640_firmware, Poweredge_hs5610_firmware, Poweredge_hs5620_firmware, Poweredge_m640_\(Pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_mx740c_firmware, Poweredge_mx750c_firmware, Poweredge_mx760c_firmware, Poweredge_mx840c_firmware, Poweredge_r240_firmware, Poweredge_r250_firmware, Poweredge_r340_firmware, Poweredge_r350_firmware, Poweredge_r440_firmware, Poweredge_r450_firmware, Poweredge_r540_firmware, Poweredge_r550_firmware, Poweredge_r640_firmware, Poweredge_r6415_firmware, Poweredge_r650_firmware, Poweredge_r650xs_firmware, Poweredge_r6515_firmware, Poweredge_r6525_firmware, Poweredge_r660_firmware, Poweredge_r660xs_firmware, Poweredge_r6615_firmware, Poweredge_r6625_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r7415_firmware, Poweredge_r7425_firmware, Poweredge_r750_firmware, Poweredge_r750xa_firmware, Poweredge_r750xs_firmware, Poweredge_r7515_firmware, Poweredge_r7525_firmware, Poweredge_r760_firmware, Poweredge_r760xa_firmware, Poweredge_r760xd2_firmware, Poweredge_r760xs_firmware, Poweredge_r7615_firmware, Poweredge_r7625_firmware, Poweredge_r840_firmware, Poweredge_r860_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_r960_firmware, Poweredge_t140_firmware, Poweredge_t150_firmware, Poweredge_t340_firmware, Poweredge_t350_firmware, Poweredge_t440_firmware, Poweredge_t550_firmware, Poweredge_t560_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xe8545_firmware, Poweredge_xe8640_firmware, Poweredge_xe9640_firmware, Poweredge_xe9680_firmware, Poweredge_xr11_firmware, Poweredge_xr12_firmware, Poweredge_xr2_firmware, Poweredge_xr4510c_firmware, Poweredge_xr4520c_firmware, Poweredge_xr5610_firmware, Poweredge_xr7620_firmware, Poweredge_xr8610t_firmware, Poweredge_xr8620t_firmware	7.8
2024-03-13	CVE-2024-0154	Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.	Dss_8440_firmware, Emc_xc_core_6420_system_firmware, Emc_xc_core_xc450_firmware, Emc_xc_core_xc640_system_firmware, Emc_xc_core_xc650_firmware, Emc_xc_core_xc6520_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_system_firmware, Emc_xc_core_xc750_firmware, Emc_xc_core_xc750xa_firmware, Emc_xc_core_xc7525_firmware, Emc_xc_core_xc940_system_firmware, Emc_xc_core_xcxr2_firmware, Nx3230_firmware, Nx3240_firmware, Nx3330_firmware, Nx3340_firmware, Nx430_firmware, Nx440_firmware, Poweredge_c4130_firmware, Poweredge_c4140_firmware, Poweredge_c6320_firmware, Poweredge_c6420_firmware, Poweredge_c6520_firmware, Poweredge_c6525_firmware, Poweredge_c6615_firmware, Poweredge_c6620_firmware, Poweredge_fc430_firmware, Poweredge_fc630_firmware, Poweredge_fc640_firmware, Poweredge_fc830_firmware, Poweredge_hs5610_firmware, Poweredge_hs5620_firmware, Poweredge_m630_\(Pe_vrtx\)_firmware, Poweredge_m630_firmware, Poweredge_m640_\(Pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_m830_\(Pe_vrtx\)_firmware, Poweredge_m830_firmware, Poweredge_mx740c_firmware, Poweredge_mx750c_firmware, Poweredge_mx760c_firmware, Poweredge_mx840c_firmware, Poweredge_r230_firmware, Poweredge_r240_firmware, Poweredge_r250_firmware, Poweredge_r330_firmware, Poweredge_r340_firmware, Poweredge_r350_firmware, Poweredge_r430_firmware, Poweredge_r440_firmware, Poweredge_r450_firmware, Poweredge_r530_firmware, Poweredge_r540_firmware, Poweredge_r550_firmware, Poweredge_r630_firmware, Poweredge_r640_firmware, Poweredge_r650_firmware, Poweredge_r650xs_firmware, Poweredge_r6515_firmware, Poweredge_r6525_firmware, Poweredge_r660_firmware, Poweredge_r660xs_firmware, Poweredge_r6615_firmware, Poweredge_r6625_firmware, Poweredge_r730_firmware, Poweredge_r730xd_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r750_firmware, Poweredge_r750xa_firmware, Poweredge_r750xs_firmware, Poweredge_r7515_firmware, Poweredge_r7525_firmware, Poweredge_r760_firmware, Poweredge_r760xa_firmware, Poweredge_r760xd2_firmware, Poweredge_r760xs_firmware, Poweredge_r7615_firmware, Poweredge_r7625_firmware, Poweredge_r830_firmware, Poweredge_r840_firmware, Poweredge_r860_firmware, Poweredge_r930_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_r960_firmware, Poweredge_t130_firmware, Poweredge_t140_firmware, Poweredge_t150_firmware, Poweredge_t330_firmware, Poweredge_t340_firmware, Poweredge_t350_firmware, Poweredge_t430_firmware, Poweredge_t440_firmware, Poweredge_t550_firmware, Poweredge_t560_firmware, Poweredge_t630_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xe8545_firmware, Poweredge_xe8640_firmware, Poweredge_xe9640_firmware, Poweredge_xe9680_firmware, Poweredge_xr11_firmware, Poweredge_xr12_firmware, Poweredge_xr2_firmware, Poweredge_xr4510c_firmware, Poweredge_xr4520c_firmware, Poweredge_xr5610_firmware, Poweredge_xr7620_firmware, Poweredge_xr8610t_firmware, Poweredge_xr8620t_firmware, Xc430_firmware, Xc630_firmware, Xc6320_firmware, Xc730_firmware, Xc730xd_firmware, Xc_core_xc660_firmware, Xc_core_xc760_firmware, Xc_core_xc7625_firmware	3.3
2024-03-13	CVE-2024-0173	Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory.	Dss_8440_firmware, Emc_xc_core_6420_system_firmware, Emc_xc_core_xc450_firmware, Emc_xc_core_xc640_system_firmware, Emc_xc_core_xc650_firmware, Emc_xc_core_xc6520_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_system_firmware, Emc_xc_core_xc750_firmware, Emc_xc_core_xc750xa_firmware, Emc_xc_core_xc7525_firmware, Emc_xc_core_xc940_system_firmware, Emc_xc_core_xcxr2_firmware, Nx3230_firmware, Nx3240_firmware, Nx3330_firmware, Nx3340_firmware, Nx430_firmware, Nx440_firmware, Poweredge_c4130_firmware, Poweredge_c4140_firmware, Poweredge_c6320_firmware, Poweredge_c6420_firmware, Poweredge_c6520_firmware, Poweredge_c6525_firmware, Poweredge_c6615_firmware, Poweredge_c6620_firmware, Poweredge_fc430_firmware, Poweredge_fc630_firmware, Poweredge_fc640_firmware, Poweredge_fc830_firmware, Poweredge_hs5610_firmware, Poweredge_hs5620_firmware, Poweredge_m630_\(Pe_vrtx\)_firmware, Poweredge_m630_firmware, Poweredge_m640_\(Pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_m830_\(Pe_vrtx\)_firmware, Poweredge_m830_firmware, Poweredge_mx740c_firmware, Poweredge_mx750c_firmware, Poweredge_mx760c_firmware, Poweredge_mx840c_firmware, Poweredge_r230_firmware, Poweredge_r240_firmware, Poweredge_r250_firmware, Poweredge_r330_firmware, Poweredge_r340_firmware, Poweredge_r350_firmware, Poweredge_r430_firmware, Poweredge_r440_firmware, Poweredge_r450_firmware, Poweredge_r530_firmware, Poweredge_r540_firmware, Poweredge_r550_firmware, Poweredge_r630_firmware, Poweredge_r640_firmware, Poweredge_r650_firmware, Poweredge_r650xs_firmware, Poweredge_r6515_firmware, Poweredge_r6525_firmware, Poweredge_r660_firmware, Poweredge_r660xs_firmware, Poweredge_r6615_firmware, Poweredge_r6625_firmware, Poweredge_r730_firmware, Poweredge_r730xd_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r750_firmware, Poweredge_r750xa_firmware, Poweredge_r750xs_firmware, Poweredge_r7515_firmware, Poweredge_r7525_firmware, Poweredge_r760_firmware, Poweredge_r760xa_firmware, Poweredge_r760xd2_firmware, Poweredge_r760xs_firmware, Poweredge_r7615_firmware, Poweredge_r7625_firmware, Poweredge_r830_firmware, Poweredge_r840_firmware, Poweredge_r860_firmware, Poweredge_r930_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_r960_firmware, Poweredge_t130_firmware, Poweredge_t140_firmware, Poweredge_t150_firmware, Poweredge_t330_firmware, Poweredge_t340_firmware, Poweredge_t350_firmware, Poweredge_t430_firmware, Poweredge_t440_firmware, Poweredge_t550_firmware, Poweredge_t560_firmware, Poweredge_t630_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xe8545_firmware, Poweredge_xe8640_firmware, Poweredge_xe9640_firmware, Poweredge_xe9680_firmware, Poweredge_xr11_firmware, Poweredge_xr12_firmware, Poweredge_xr2_firmware, Poweredge_xr4510c_firmware, Poweredge_xr4520c_firmware, Poweredge_xr5610_firmware, Poweredge_xr7620_firmware, Poweredge_xr8610t_firmware, Poweredge_xr8620t_firmware, Xc430_firmware, Xc630_firmware, Xc6320_firmware, Xc730_firmware, Xc730xd_firmware, Xc_core_xc660_firmware, Xc_core_xc760_firmware, Xc_core_xc7625_firmware	3.3
2024-08-29	CVE-2024-38303	Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.	Dss_8440_firmware, Emc_storage_nx3240_firmware, Emc_storage_nx3340_firmware, Emc_xc_core_6420_system_firmware, Emc_xc_core_xc640_system_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_system_firmware, Emc_xc_core_xc940_system_firmware, Emc_xc_core_xcxr2_firmware, Poweredge_c4140_firmware, Poweredge_c6420_firmware, Poweredge_fc640_firmware, Poweredge_m640_\(For_pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r440_firmware, Poweredge_r540_firmware, Poweredge_r640_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t440_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xr2_firmware	6.0
2024-08-29	CVE-2024-38304	Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.	Dss_8440_firmware, Emc_storage_nx3240_firmware, Emc_storage_nx3340_firmware, Emc_xc_core_6420_system_firmware, Emc_xc_core_xc640_system_firmware, Emc_xc_core_xc740xd2_firmware, Emc_xc_core_xc740xd_system_firmware, Emc_xc_core_xc940_system_firmware, Emc_xc_core_xcxr2_firmware, Poweredge_c4140_firmware, Poweredge_c6420_firmware, Poweredge_fc640_firmware, Poweredge_m640_\(For_pe_vrtx\)_firmware, Poweredge_m640_firmware, Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r440_firmware, Poweredge_r540_firmware, Poweredge_r640_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t440_firmware, Poweredge_t640_firmware, Poweredge_xe2420_firmware, Poweredge_xe7420_firmware, Poweredge_xe7440_firmware, Poweredge_xr2_firmware	6.5
2021-06-14	CVE-2021-21554	Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service, arbitrary code execution, or information disclosure in UEFI or BIOS Preboot Environment.	Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r640_firmware, Poweredge_r740_firmware, Poweredge_r740xd_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Precision_7920_firmware	6.7
2021-06-14	CVE-2021-21555	Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service, arbitrary code execution, or information disclosure in UEFI or BIOS Preboot Environment.	Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r640_firmware, Poweredge_r740_firmware, Poweredge_r740xd_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t640_firmware	6.7
2021-06-14	CVE-2021-21556	Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of Service, arbitrary code execution, or information disclosure in UEFI or BIOS Preboot Environment.	Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r640_firmware, Poweredge_r740_firmware, Poweredge_r740xd_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t640_firmware	6.7
2021-06-14	CVE-2021-21557	Dell PowerEdge Server BIOS and select Dell Precision Rack BIOS contain an out-of-bounds array access vulnerability. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of service, arbitrary code execution, or information disclosure in System Management Mode.	Poweredge_c4140_firmware, Poweredge_c6420_firmware, Poweredge_c6525_firmware, Poweredge_fc640_firmware, Poweredge_m640_firmware, Poweredge_m640p_firmware, Poweredge_mx740c_firmware, Poweredge_mx840c_firmware, Poweredge_r240_firmware, Poweredge_r340_firmware, Poweredge_r440_firmware, Poweredge_r540_firmware, Poweredge_r640_firmware, Poweredge_r6415_firmware, Poweredge_r6515_firmware, Poweredge_r6525_firmware, Poweredge_r740_firmware, Poweredge_r740xd2_firmware, Poweredge_r740xd_firmware, Poweredge_r7415_firmware, Poweredge_r7425_firmware, Poweredge_r7515_firmware, Poweredge_r7525_firmware, Poweredge_r840_firmware, Poweredge_r940_firmware, Poweredge_r940xa_firmware, Poweredge_t140_firmware, Poweredge_t340_firmware, Poweredge_t440_firmware, Poweredge_t640_firmware, Poweredge_xr2_firmware	6.7