CVE-2023-28058

CVSS Score of 10 (low)

Details

Published Jun 23, 2023
Updated: Jun 27, 2023
CWE ID 20

Summary

CVE-2023-28058 is an improper input validation vulnerability found in Dell BIOS. This vulnerability can be exploited by a local authenticated malicious user with administrator privileges to modify a UEFI variable. The affected products include various models of Dell computers, such as p6_db0, lmJi4r, izTlNC, and more. To remediate this vulnerability, it is advised to apply the latest firmware update provided by Dell. The potential danger of this vulnerability to an organization is medium, with a base severity score of 5.1/10 and an impact score of 4.2/10 according to the CVSS 3.1 rating system. It has a high privileges required level and can lead to high integrity impact without affecting confidentiality.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-28058 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options