Dell Firmware and BIOS Update (MINDBREEZE32589)

ID: MINDBREEZE32589 
Affected Components: Mindbreeze InSpire SaaS, Mindbreeze InSpire   
Severity: 8.8 High 
Status: Final 
First published: December 20, 2024 
CVEs: CVE-2024-38303, CVE-2024-38304, CVE-2024-21829, CVE-2024-21781, CVE-2023-43753, CVE-2024-23599, CVE-2024-23984, CVE-2024-21820, CVE-2024-23918, CVE-2024-27457 

Summary

• Dell BIOS: Improper Input Validation 
• Dell BIOS: Access of Memory Location After End of Buffer 
• UEFI Firmware: Improper input validation 
• Intel(R) SGX: Improper conditions check 
• Race condition in Seamless Firmware Updates 
• Observable discrepancy in RAPL interface 
• Intel CPU: Incorrect default permissions 

• Intel(R) TDX: Improper check for unusual or exceptional conditions 

   

Hotfix Information 

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS: 

• Mindbreeze InSpire SaaS Release 24.8  
• Mindbreeze InSpire 24.8 Release