TROYANOSYVIRUS
Retour aux CVEs

CVE-2023-32475

HIGH
7.6

Description

Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.

Details CVE

Score CVSS v3.17.6
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vecteur d'attaquePHYSICAL
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie6/7/2024
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

dell:alienware_aurora_r10dell:alienware_aurora_r10_firmwaredell:alienware_aurora_r15_amddell:alienware_aurora_r15_amd_firmwaredell:alienware_aurora_ryzen_edition_r14dell:alienware_aurora_ryzen_edition_r14_firmwaredell:alienware_m15_r7_amddell:alienware_m15_r7_amd_firmwaredell:alienware_m15_ryzen_edition_r5dell:alienware_m15_ryzen_edition_r5_firmwaredell:alienware_m16_r1_amddell:alienware_m16_r1_amd_firmwaredell:alienware_m17_r5_amddell:alienware_m17_r5_amd_firmwaredell:alienware_m18dell:alienware_m18_firmwaredell:g15_5515dell:g15_5515_firmwaredell:g15_5525dell:g15_5525_firmwaredell:g15_5535dell:g15_5535_firmwaredell:g5_5505dell:g5_5505_firmwaredell:inspiron_14_5425dell:inspiron_14_5425_firmwaredell:inspiron_14_5435dell:inspiron_14_5435_firmwaredell:inspiron_14_7425_2-in-1dell:inspiron_14_7425_2-in-1_firmwaredell:inspiron_14_7435_2-in-1dell:inspiron_14_7435_2-in-1_firmwaredell:inspiron_15_3515dell:inspiron_15_3515_firmwaredell:inspiron_15_3525dell:inspiron_15_3525_firmwaredell:inspiron_15_3535dell:inspiron_15_3535_firmwaredell:inspiron_16_5625dell:inspiron_16_5625_firmwaredell:inspiron_16_5635dell:inspiron_16_5635_firmwaredell:inspiron_16_7635_2-in-1dell:inspiron_16_7635_2-in-1_firmwaredell:inspiron_24_5415_all-in-onedell:inspiron_24_5415_all-in-one_firmwaredell:inspiron_3505dell:inspiron_3505_firmwaredell:inspiron_5405dell:inspiron_5405_firmwaredell:inspiron_5415dell:inspiron_5415_firmwaredell:inspiron_5505dell:inspiron_5505_firmwaredell:inspiron_5515dell:inspiron_5515_firmwaredell:inspiron_7405_2-in-1dell:inspiron_7405_2-in-1_firmwaredell:inspiron_7415_2-in-1dell:inspiron_7415_2-in-1_firmwaredell:vostro_14_3425dell:vostro_14_3425_firmwaredell:vostro_14_3435dell:vostro_14_3435_firmwaredell:vostro_15_3515dell:vostro_15_3515_firmwaredell:vostro_15_3525dell:vostro_15_3525_firmwaredell:vostro_15_3535dell:vostro_15_3535_firmwaredell:vostro_16_5635dell:vostro_16_5635_firmwaredell:vostro_3405dell:vostro_3405_firmwaredell:vostro_5415dell:vostro_5415_firmwaredell:vostro_5515dell:vostro_5515_firmwaredell:vostro_5625dell:vostro_5625_firmware

Faiblesses (CWE)

CWE-353

References

https://www.dell.com/support/kbdoc/en-us/000215644/dsa-2023-222-security-update-for-an-amd-bios-vulnerability(security_alert@emc.com)
https://www.dell.com/support/kbdoc/en-us/000215644/dsa-2023-222-security-update-for-an-amd-bios-vulnerability(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.