CVE-2023-32460

Summary

Dell PowerEdge BIOS contains an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.

Affected Software

VendorProductVersion RangeStatus
DellPowerEdge PlatformVersions prior to 1.6.6affected
DellPowerEdge PlatformVersions prior to 1.3.6affected
DellPowerEdge PlatformVersions prior to 1.1.2affected
DellPowerEdge PlatformVersions prior to 1.12.1affected
DellPowerEdge PlatformVersions prior to 1.8.1affected
DellPowerEdge PlatformVersions prior to 1.13.3affected
DellPowerEdge PlatformVersions prior to 2.13.3affected
DellPowerEdge PlatformVersions prior to 2.20.1affected
DellPowerEdge PlatformVersions prior to 2.20.0affected
DellPowerEdge PlatformVersions prior to 2.15.1affected
DellPowerEdge PlatformVersions prior to 1.21.0affected
DellPowerEdge PlatformVersions prior to 2.18.1affected
DellPowerEdge PlatformVersions prior to 2.13.0 affected
DellPowerEdge PlatformVersions prior to 2.18.2affected
DellPowerEdge PlatformVersions prior to 1.18.1 affected
DellPowerEdge PlatformVersions prior to 2.19.1 affected

Weaknesses

  • CWE-306: CWE-306: Missing Authentication for Critical Function

ADP Enrichment

CVE Program Container

Additional References

References