CVE-2023-32466

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Jul 24, 2024
CWE ID 787

Summary

CVE-2023-32466 is a newly identified vulnerability affecting the BIOS of Dell Edge Gateway devices with versions 3200 and 5200. This issue permits a local, authenticated user with elevated privileges to perform an out-of-bounds write operation. The exploitation of this vulnerability could potentially expose some UEFI code, granting an attacker the ability to execute arbitrary code or escalate their privileges. This poses a significant risk to organizational networks that utilize these devices. It is strongly recommended that affected organizations prioritize patching and implement additional security measures to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share