CVE-2023-32453

CVSS 3.1 Score 3.9 of 10 (low)

Details

Published Aug 16, 2023
Updated: Aug 23, 2023
CWE ID 287

Summary

CVE-2023-32453 is a vulnerability affecting Dell BIOS systems. An attacker with physical access to the machine can exploit this improper authentication issue to modify a critical UEFI variable undetected by the BIOS administrator. This vulnerability poses a significant risk, particularly in enterprise environments, as it allows unauthorized changes to the system's firmware. Organizations are advised to update their BIOS to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Dell Latitude 5420 Firmware
  • Dell Inspiron 3493 Firmware
  • Dell Inspiron 3593 Firmware
  • Dell Inspiron 3793 Firmware

Affected Vendors

  • Dell Technologies, Inc.