CVE-2023-32475

CWE-3533 documents3 sources

Severity

7.6HIGH

EPSS

0.0%

top 97.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dell CPG Bios Dell Alienware Aurora R10 Firmware Dell Alienware Aurora R15 AMD Firmware +38 more

Timeline

PublishedJun 7

Description

Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 0.9 | Impact: 6.0

Affected Packages41 packages

▶CVEListV5dell/cpg_biosN/A — 2.6.0+12

▶NVDdell/g5_5505_firmware< 1.18.0

▶NVDdell/g15_5515_firmware< 1.15.0

▶NVDdell/g15_5525_firmware< 1.15.0

▶NVDdell/g15_5535_firmware< 1.5.0

🔴Vulnerability Details

GHSA

GHSA-c54f-vgc6-pc5x: Dell BIOS contains a missing support for integrity check vulnerability↗2024-06-07

▶

CVEList

CVE-2023-32475: Dell BIOS contains a missing support for integrity check vulnerability↗2024-06-07

▶