CVE-2023-32453

CVSS 3.1 Score 3.9 of 10 (low)

Details

Published Aug 16, 2023

Updated: Aug 23, 2023

CWE ID 287

Summary

CVE-2023-32453 is a vulnerability affecting Dell BIOS systems. An attacker with physical access to the machine can exploit this improper authentication issue to modify a critical UEFI variable undetected by the BIOS administrator. This vulnerability poses a significant risk, particularly in enterprise environments, as it allows unauthorized changes to the system's firmware. Organizations are advised to update their BIOS to the latest version to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Dell Latitude 5420 Firmware
Dell Inspiron 3493 Firmware
Dell Inspiron 3593 Firmware
Dell Inspiron 3793 Firmware

Affected Vendors

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database