CVE-2023-32460

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 8, 2023

Updated: Dec 14, 2023

CWE ID 306

Summary

CVE-2023-32460 is a privilege management vulnerability affecting Dell PowerEdge BIOS. This issue allows an unauthenticated local attacker to exploit the flaw and escalate privileges, gaining unauthorized access to critical system functions. Despite requiring local access, the potential consequences of this vulnerability are significant, posing a potential threat to the security and integrity of affected systems. Dell has released a patch to address this vulnerability, and it is strongly recommended that users apply the update as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tu1bZV
https://www.cve.org/CVERecord?id=CVE-2023-32460
https://nvd.nist.gov/vuln/detail/CVE-2023-32460

Back to Vulnerability Database

CVE-2023-32460

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations