CVE-2023-32467

Summary

Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability leading to exposure of some UEFI code, leading to arbitrary code execution or escalation of privilege.

Affected Software

VendorProductVersion RangeStatus
DellPowerSwitch Z9664F-ON BIOSN/A < v1.05.10affected

Weaknesses

  • CWE-665: CWE-665: Improper Initialization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References