Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-44297
HistoryDec 05, 2023 - 4:15 p.m.

CVE-2023-44297

2023-12-0516:15:07
CWE-1234
CWE-667
[email protected]
web.nvd.nist.gov
dell poweredge
dell precision
bios
security vulnerability
information disclosure
information tampering
code execution
denial of service
cve-2023-44297

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.2%

JSON

Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial of service.

Affected configurations

NVD
Node
dellpoweredge_r660Match-
AND
dellpoweredge_r660_firmwareMatch1.4.4
Node
dellpoweredge_r760Match-
AND
dellpoweredge_r760_firmwareMatch1.4.4
Node
dellpoweredge_c6620Match-
AND
dellpoweredge_c6620_firmwareMatch1.4.4
Node
dellpoweredge_mx760cMatch-
AND
dellpoweredge_mx760c_firmwareMatch1.4.4
Node
dellpoweredge_r860Match-
AND
dellpoweredge_r860_firmwareMatch1.4.4
Node
dellpoweredge_r960Match-
AND
dellpoweredge_r960_firmwareMatch1.4.4
Node
dellpoweredge_hs5610_firmwareMatch1.4.4
AND
dellpoweredge_hs5610Match-
Node
dellpoweredge_hs5620_firmwareMatch1.4.4
AND
dellpoweredge_hs5620Match-
Node
dellpoweredge_r660xs_firmwareMatch1.4.4
AND
dellpoweredge_r660xsMatch-
Node
dellpoweredge_r760xs_firmwareMatch1.4.4
AND
dellpoweredge_r760xsMatch-
Node
dellpoweredge_r760xd2_firmwareMatch1.4.4
AND
dellpoweredge_r760xd2Match-
Node
dellpoweredge_t560_firmwareMatch1.4.4
AND
dellpoweredge_t560Match-
Node
dellpoweredge_r760xa_firmwareMatch1.4.4
AND
dellpoweredge_r760xaMatch-

Related

prion 1
cve 1
cvelist 1
prion
prion
Information disclosure
2023-12-05 16:15:00
cve
cve
CVE-2023-44297
2023-12-05 16:15:07
cvelist
cvelist
CVE-2023-44297
2023-12-05 15:52:27

6.8 Medium

CVSS3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

23.2%

JSON
Related for NVD:CVE-2023-44297
prion1cve1cvelist1