CVE-2023-25936

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jun 23, 2023

Updated: Jun 28, 2023

CWE ID 20

Summary

CVE-2023-25936 is a vulnerability affecting Dell BIOS that allows a local, authenticated user with administrator privileges to bypass input validation. This issue can potentially be exploited to modify UEFI variables, posing a significant security risk. An attacker could take advantage of this vulnerability to gain unauthorized access or make unintended changes to system configurations. System administrators are advised to apply relevant patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rv3MdM
https://www.cve.org/CVERecord?id=CVE-2023-25936
https://nvd.nist.gov/vuln/detail/CVE-2023-25936

Back to Vulnerability Database

CVE-2023-25936

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations