2 matches found
CVE-2023-28075
Dell BIOS TOCTOU vulnerability (CVE-2023-28075) allows a locally authenticated user with physical access to trigger a specifically timed DMA operation during an SMI to gain arbitrary code execution. Affected component is the Dell BIOS; root cause is a Time‑of‑check Time‑of‑use flaw enabling TOCTO...
CVE-2023-28075
Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the...