4.6

CVE-2023-32453

Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DellAlienware M15 R7 Firmware Version < 1.18.0
   DellAlienware M15 R7 Version-
DellAlienware M16 Firmware Version < 1.10.1
   DellAlienware M16 Version-
DellAlienware M18 Firmware Version < 1.10.1
   DellAlienware M18 Version-
DellChengming 3900 Firmware Version < 1.15.0
   DellChengming 3900 Version-
DellChengming 3901 Firmware Version < 1.15.0
   DellChengming 3901 Version-
DellChengming 3910 Firmware Version < 1.6.0
   DellChengming 3910 Version-
DellChengming 3911 Firmware Version < 1.6.0
   DellChengming 3911 Version-
DellG15 5520 Firmware Version < 1.18.0
   DellG15 5520 Version-
DellG16 7620 Firmware Version < 1.18.0
   DellG16 7620 Version-
DellG3 3500 Firmware Version < 1.26.0
   DellG3 3500 Version-
DellG5 15 5500 Firmware Version < 1.26.0
   DellG5 15 5500 Version-
DellG7 15 7500 Firmware Version < 1.26.0
   DellG7 15 7500 Version-
DellG7 17 7700 Firmware Version < 1.26.0
   DellG7 17 7700 Version-
DellPrecision 5680 Firmware Version < 1.4.1
   DellPrecision 5680 Version-
DellInspiron 14 5410 Firmware Version < 2.20.0
   DellInspiron 14 5410 Version-
DellInspiron 14 5418 Firmware Version < 2.20.0
   DellInspiron 14 5418 Version-
DellInspiron 15 3511 Firmware Version < 1.23.0
   DellInspiron 15 3511 Version-
DellInspiron 15 5510 Firmware Version < 2.20.0
   DellInspiron 15 5510 Version-
DellInspiron 15 5518 Firmware Version < 2.20.0
   DellInspiron 15 5518 Version-
DellInspiron 3020 Desktop Firmware Version < 1.6.0
   DellInspiron 3020 Desktop Version-
DellInspiron 3493 Firmware Version < 1.27.0
   DellInspiron 3493 Version-
DellInspiron 3511 Firmware Version < 1.23.0
   DellInspiron 3511 Version-
DellInspiron 3593 Firmware Version < 1.27.0
   DellInspiron 3593 Version-
DellInspiron 3793 Firmware Version < 1.27.0
   DellInspiron 3793 Version-
DellInspiron 3891 Firmware Version < 1.19.0
   DellInspiron 3891 Version-
DellInspiron 3910 Firmware Version < 1.15.0
   DellInspiron 3910 Version-
DellInspiron 5410 Firmware Version < 2.20.0
   DellInspiron 5410 Version-
DellInspiron 5493 Firmware Version < 1.27.0
   DellInspiron 5493 Version-
DellInspiron 5593 Firmware Version < 1.27.0
   DellInspiron 5593 Version-
DellInspiron 7300 2-in-1 Firmware Version < 1.19.0
   DellInspiron 7300 2-in-1 Version-
DellInspiron 7490 Firmware Version < 1.22.0
   DellInspiron 7490 Version-
DellInspiron 7500 Firmware Version < 1.24.0
   DellInspiron 7500 Version-
DellInspiron 7501 Firmware Version < 1.24.0
   DellInspiron 7501 Version-
DellInspiron 7510 Firmware Version < 1.17.0
   DellInspiron 7510 Version-
DellInspiron 7610 Firmware Version < 1.17.0
   DellInspiron 7610 Version-
DellLatitude 3140 Firmware Version < 1.8.0
   DellLatitude 3140 Version-
DellLatitude 3301 Firmware Version < 1.27.0
   DellLatitude 3301 Version-
DellLatitude 3320 Firmware Version < 1.23.0
   DellLatitude 3320 Version-
DellLatitude 3330 Firmware Version < 1.15.0
   DellLatitude 3330 Version-
DellLatitude 3340 Firmware Version < 1.6.0
   DellLatitude 3340 Version-
DellLatitude 3400 Firmware Version < 1.29.0
   DellLatitude 3400 Version-
DellLatitude 3430 Firmware Version < 1.12.0
   DellLatitude 3430 Version-
DellLatitude 3440 Firmware Version < 1.6.0
   DellLatitude 3440 Version-
DellLatitude 3500 Firmware Version < 1.29.0
   DellLatitude 3500 Version-
DellLatitude 3530 Firmware Version < 1.12.0
   DellLatitude 3530 Version-
DellLatitude 3540 Firmware Version < 1.6.0
   DellLatitude 3540 Version-
DellLatitude 5420 Firmware Version < 1.30.0
   DellLatitude 5420 Version-
DellLatitude 5430 Firmware Version < 1.15.0
   DellLatitude 5430 Version-
DellLatitude 5431 Firmware Version < 1.15.0
   DellLatitude 5431 Version-
DellLatitude 7320 Firmware Version < 1.28.0
   DellLatitude 7320 Version-
DellLatitude 7420 Firmware Version < 1.28.0
   DellLatitude 7420 Version-
DellLatitude 7520 Firmware Version < 1.28.0
   DellLatitude 7520 Version-
DellLatitude 9330 Firmware Version < 1.13.0
   DellLatitude 9330 Version-
DellLatitude 9520 Firmware Version < 1.24.0
   DellLatitude 9520 Version-
DellLatitude Rugged 5430 Firmware Version < 1.20.0
   DellLatitude Rugged 5430 Version-
DellLatitude Rugged 7330 Firmware Version < 1.20.0
   DellLatitude Rugged 7330 Version-
DellOptiplex 3000 Firmware Version < 1.15.0
   DellOptiplex 3000 Version-
DellOptiplex 5000 Firmware Version < 1.15.0
   DellOptiplex 5000 Version-
DellOptiplex 5090 Firmware Version < 1.19.0
   DellOptiplex 5090 Version-
DellOptiplex 5400 All-in-one Firmware Version < 1.1.30
   DellOptiplex 5400 All-in-one Version-
DellOptiplex 5490 All-in-one Firmware Version < 1.23.0
   DellOptiplex 5490 All-in-one Version-
DellOptiplex 7000 Firmware Version < 1.15.0
   DellOptiplex 7000 Version-
DellOptiplex 7090 Firmware Version < 1.19.0
   DellOptiplex 7090 Version-
DellOptiplex 7400 All-in-one Firmware Version < 1.1.30
   DellOptiplex 7400 All-in-one Version-
DellOptiplex 7490 All-in-one Firmware Version < 1.23.0
   DellOptiplex 7490 All-in-one Version-
DellOptiplex Xe4 Firmware Version < 1.15.0
   DellOptiplex Xe4 Version-
DellPrecision 3260 Compact Firmware Version < 2.7.0
   DellPrecision 3260 Compact Version-
DellPrecision 3450 Firmware Version < 1.19.0
   DellPrecision 3450 Version-
DellPrecision 3470 Firmware Version < 1.15.0
   DellPrecision 3470 Version-
DellPrecision 3650 Tower Firmware Version < 1.24.0
   DellPrecision 3650 Tower Version-
DellPrecision 3660 Firmware Version < 2.7.0
   DellPrecision 3660 Version-
DellPrecision 5470 Firmware Version < 1.15.0
   DellPrecision 5470 Version-
DellPrecision 5570 Firmware Version < 1.16.0
   DellPrecision 5570 Version-
DellPrecision 5860 Tower Firmware Version < 1.0.10
   DellPrecision 5860 Tower Version-
DellPrecision 7960 Tower Firmware Version < 1.0.9
   DellPrecision 7960 Tower Version-
DellVostro 3020 Sff Firmware Version < 1.6.0
   DellVostro 3020 Sff Version-
DellVostro 3020 T Firmware Version < 1.6.0
   DellVostro 3020 T Version-
DellVostro 3510 Firmware Version < 1.23.0
   DellVostro 3510 Version-
DellVostro 3690 Firmware Version < 1.19.0
   DellVostro 3690 Version-
DellVostro 3710 Firmware Version < 1.15.0
   DellVostro 3710 Version-
DellVostro 3890 Firmware Version < 1.19.0
   DellVostro 3890 Version-
DellVostro 3910 Firmware Version < 1.15.0
   DellVostro 3910 Version-
DellVostro 5410 Firmware Version < 2.20.0
   DellVostro 5410 Version-
DellVostro 5491 Firmware Version < 1.27.0
   DellVostro 5491 Version-
DellVostro 5510 Firmware Version < 2.20.0
   DellVostro 5510 Version-
DellVostro 5591 Firmware Version < 1.27.0
   DellVostro 5591 Version-
DellVostro 5890 Firmware Version < 1.19.0
   DellVostro 5890 Version-
DellVostro 7500 Firmware Version < 1.24.0
   DellVostro 7500 Version-
DellVostro 7510 Firmware Version < 1.17.0
   DellVostro 7510 Version-
DellXps 13 9305 Firmware Version < 1.16.0
   DellXps 13 9305 Version-
DellXps 13 7390 Firmware Version < 1.21.0
   DellXps 13 7390 Version-
DellXps 13 7390 2-in-1 Firmware Version < 1.26.0
   DellXps 13 7390 2-in-1 Version-
DellXps 13 9300 Firmware Version < 1.19.0
   DellXps 13 9300 Version-
DellXps 13 9310 Firmware Version < 3.17.0
   DellXps 13 9310 Version-
DellXps 13 9310 2-in-1 Firmware Version < 2.19.0
   DellXps 13 9310 2-in-1 Version-
DellXps 13 9315 Firmware Version < 1.13.0
   DellXps 13 9315 Version-
DellXps 15 9520 Firmware Version < 1.16.0
   DellXps 15 9520 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.03% 0.068
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.9 0.3 3.6
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
security_alert@emc.com 4.6 0.3 4.2
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L
CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.