CVE-2023-32461

Summary

Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially escalate privileges.  

Affected Software

VendorProductVersion RangeStatus
DellPowerEdge PlatformVersions prior to 1.5.6affected
DellPowerEdge PlatformVersions prior to 1.1.3affected
DellPowerEdge PlatformVersions prior to 1.1.4affected
DellPowerEdge PlatformVersions prior to 1.2.5affected
DellPowerEdge PlatformVersions prior to 1.3.11affected
DellPowerEdge PlatformVersions prior to 1.10.2affected
DellPowerEdge PlatformVersions prior to 1.6.3affected
DellPowerEdge PlatformVersions prior to 1.10.4affected
DellPowerEdge PlatformVersions prior to 2.11.4affected
DellPowerEdge PlatformVersions prior to 2.11.3affected
DellPowerEdge PlatformVersions prior to Before 1.11.2affected

Weaknesses

  • CWE-122: CWE-122: Heap-based Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References