CVE-2023-28042

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jun 23, 2023
Updated: Jun 28, 2023
CWE ID 20

Summary

CVE-2023-28042 is a vulnerability affecting Dell BIOS. It involves an improper input validation issue, allowing a local, authenticated user with administrator privileges to manipulate UEFI variables. This weakness could potentially be exploited to gain unauthorized system access or install unapproved software, posing a significant security risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share