CVE-2023-28026

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jun 23, 2023

Updated: Jun 27, 2023

CWE ID 20

Summary

CVE-2023-28026 is a vulnerability affecting Dell BIOS software. An authenticated attacker with administrator privileges can take advantage of improper input validation, allowing them to modify a UEFI variable. This issue poses a potential security risk, as unauthorized modifications to UEFI variables could result in significant system changes or compromise the system's security. Dell has released a patch to address this vulnerability, and it is recommended that affected systems be updated as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rtpGxK
https://www.cve.org/CVERecord?id=CVE-2023-28026
https://nvd.nist.gov/vuln/detail/CVE-2023-28026

Back to Vulnerability Database

CVE-2023-28026

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations