CVE-2023-25937
CVSS 3.1 Score 6.7 of 10 (medium)
Details
Published Jun 23, 2023
Updated: Jun 28, 2023
CWE ID 20
Summary
CVE-2023-25937 is a vulnerability affecting Dell BIOS with an improper input validation issue. This flaw allows a local authenticated user with administrator privileges to manipulate UEFI variables, which could potentially lead to serious system compromises. This vulnerability poses a significant risk to organizations and individuals using Dell systems and should be addressed promptly through the application of available patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share