CVE-2023-32475

Summary

Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.

Affected Software

VendorProductVersion RangeStatus
DellCPG BIOSN/A < 2.6.0affected
DellCPG BIOSN/A < 1.13.0affected
DellCPG BIOSN/A < 2.16.0unaffected
DellCPG BIOSN/A < 1.15.0affected
DellCPG BIOSN/A < 1.16.0affected
DellCPG BIOSN/A < 1.9.0affected
DellCPG BIOSN/A < 1.5.0affected
DellCPG BIOSN/A < 1.18.0affected
DellCPG BIOSN/A < 1.8.0affected
DellCPG BIOSN/A < 1.15.1affected
DellCPG BIOSN/A < 1.12.0affected
DellCPG BIOSN/A < 1.17.0affected
DellCPG BIOSN/A < 1.14.0affected
DellCPG BIOSN/A < 1.19.0affected

Weaknesses

  • CWE-353: CWE-353: Missing Support for Integrity Check

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References