Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-32480
HistoryJun 23, 2023 - 11:15 a.m.

CVE-2023-32480

2023-06-2311:15:09
CWE-20
[email protected]
web.nvd.nist.gov
15
dell
bios
improper input validation
cve-2023-32480
nvd
vulnerability
security

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.0%

JSON

Dell BIOS contains an Improper Input Validation vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability to perform arbitrary code execution.

Affected configurations

NVD
Node
dellalienware_m15_r7_firmwareRange<1.17.0
AND
dellalienware_m15_r7Match-
Node
dellg15_5510_firmwareRange<1.19.0
AND
dellg15_5510Match-
Node
dellg15_5520_firmwareRange<1.17.0
AND
dellg15_5520Match-
Node
dellinspiron_14_5410_firmwareRange<2.19.1
AND
dellinspiron_14_5410Match-
Node
dellinspiron_14_5418_firmwareRange<2.19.1
AND
dellinspiron_14_5418Match-
Node
dellinspiron_15_5510_firmwareRange<2.19.1
AND
dellinspiron_15_5510Match-
Node
dellinspiron_15_5518_firmwareRange<2.19.1
AND
dellinspiron_15_5518Match-
Node
dellinspiron_16_7620_2-in-1_firmwareRange<1.12.1
AND
dellinspiron_16_7620_2-in-1Match-
Node
dellinspiron_3520_firmwareRange<1.15.0
AND
dellinspiron_3520Match-
Node
dellinspiron_5410_firmwareRange<2.19.1
AND
dellinspiron_5410Match-
Node
dellinspiron_5420_firmwareRange<1.14.1
AND
dellinspiron_5420Match-
Node
dellinspiron_5620_firmwareRange<1.14.1
AND
dellinspiron_5620Match-
Node
dellinspiron_7420_firmwareRange<1.12.1
AND
dellinspiron_7420Match-
Node
dellinspiron_7510_firmwareRange<1.16.1
AND
dellinspiron_7510Match-
Node
dellinspiron_7610_firmwareRange<1.16.1
AND
dellinspiron_7610Match-
Node
delllatitude_3320_firmwareRange<1.22.2
AND
delllatitude_3320Match-
Node
delllatitude_3420_firmwareRange<1.29.0
AND
delllatitude_3420Match-
Node
delllatitude_3430Match-
AND
delllatitude_3430_firmwareRange<1.10.1
Node
delllatitude_3520Match-
AND
delllatitude_3520_firmwareRange<1.29.0
Node
delllatitude_3530_firmwareRange<1.10.1
AND
delllatitude_3530Match-
Node
dellprecision_5760_firmwareRange<1.20.1
AND
dellprecision_5760Match-
Node
dellprecision_5770_firmwareRange<1.17.1
AND
dellprecision_5770Match-
Node
dellvostro_3420_firmwareRange<1.15.0
AND
dellvostro_3420Match-
Node
dellvostro_3520_firmwareRange<1.15.0
AND
dellvostro_3520Match-
Node
dellvostro_5410Match-
AND
dellvostro_5410_firmwareRange<2.19.1
Node
dellvostro_5510Match-
AND
dellvostro_5510_firmwareRange<2.19.1
Node
dellvostro_5620Match-
AND
dellvostro_5620_firmwareRange<1.14.1
Node
dellvostro_7510Match-
AND
dellvostro_7510_firmwareRange<1.16.1
Node
dellxps_13_9315_2-in-1Match-
AND
dellxps_13_9315_2-in-1_firmwareRange<1.8.1
Node
dellxps_17_9710Match-
AND
dellxps_17_9710_firmwareRange<1.20.1
Node
dellxps_17_9720_firmwareRange<1.17.1
AND
dellxps_17_9720Match-

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "CPG BIOS",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions"
      }
    ]
  }
]

Related

cvelist 1
nvd 1
prion 1
cvelist
cvelist
CVE-2023-32480
2023-06-23 10:50:52
nvd
nvd
CVE-2023-32480
2023-06-23 11:15:09
prion
prion
Input validation
2023-06-23 11:15:00

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.0%

JSON
Related for CVE-2023-32480
cvelist1nvd1prion1