CVE-2023-28061

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jun 23, 2023

Updated: Jun 28, 2023

CWE ID 20

Summary

CVE-2023-28061 is a vulnerability affecting Dell BIOS systems. It involves improper input validation, allowing a local authenticated user with administrator privileges to manipulate UEFI variables. This issue poses a security risk, as unauthorized modifications to UEFI settings could lead to system compromise. It is essential that users apply the necessary patches as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rv5iSV
https://www.cve.org/CVERecord?id=CVE-2023-28061
https://nvd.nist.gov/vuln/detail/CVE-2023-28061

Back to Vulnerability Database

CVE-2023-28061

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations