CVE-2023-32460

EPSS 0.05%
Published 08.12.2023 06:15:45
Last modified 21.11.2024 08:03:23
Source security_alert@emc.com
Teams watchlist Login
Open Login

Dell PowerEdge BIOS contains an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Dell ≫ Poweredge R660 Firmware Version < 1.6.6

Dell ≫ Poweredge R660 Version-

Dell ≫ Poweredge R760 Firmware Version < 1.6.6

Dell ≫ Poweredge R760 Version-

Dell ≫ Poweredge C6620 Firmware Version < 1.6.6

Dell ≫ Poweredge C6620 Version-

Dell ≫ Poweredge Mx760c Firmware Version < 1.6.6

Dell ≫ Poweredge Mx760c Version-

Dell ≫ Poweredge R860 Firmware Version < 1.6.6

Dell ≫ Poweredge R860 Version-

Dell ≫ Poweredge R960 Firmware Version < 1.6.6

Dell ≫ Poweredge R960 Version-

Dell ≫ Poweredge Hs5610 Firmware Version < 1.6.6

Dell ≫ Poweredge Hs5610 Version-

Dell ≫ Poweredge Hs5620 Firmware Version < 1.6.6

Dell ≫ Poweredge Hs5620 Version-

Dell ≫ Poweredge R660xs Firmware Version < 1.6.6

Dell ≫ Poweredge R660xs Version-

Dell ≫ Poweredge R760xs Firmware Version < 1.6.6

Dell ≫ Poweredge R760xs Version-

Dell ≫ Poweredge R760xd2 Firmware Version < 1.6.6

Dell ≫ Poweredge R760xd2 Version-

Dell ≫ Poweredge T560 Firmware Version < 1.6.6

Dell ≫ Poweredge T560 Version-

Dell ≫ Poweredge R760xa Firmware Version < 1.6.6

Dell ≫ Poweredge R760xa Version-

Dell ≫ Poweredge Xr5610 Firmware Version < 1.6.6

Dell ≫ Poweredge Xr5610 Version-

Dell ≫ Poweredge Xr8610t Firmware Version < 1.6.6

Dell ≫ Poweredge Xr8610t Version-

Dell ≫ Poweredge Xr8620t Firmware Version < 1.6.6

Dell ≫ Poweredge Xr8620t Version-

Dell ≫ Poweredge R6615 Firmware Version < 1.6.6

Dell ≫ Poweredge R6615 Version-

Dell ≫ Poweredge R7615 Firmware Version < 1.6.6

Dell ≫ Poweredge R7615 Version-

Dell ≫ Poweredge Xr7620 Firmware Version < 1.6.6

Dell ≫ Poweredge Xr7620 Version-

Dell ≫ Poweredge Xe8640 Firmware Version < 1.3.6

Dell ≫ Poweredge Xe8640 Version-

Dell ≫ Poweredge Xe9640 Firmware Version < 1.3.6

Dell ≫ Poweredge Xe9640 Version-

Dell ≫ Poweredge Xe9680 Firmware Version < 1.3.6

Dell ≫ Poweredge Xe9680 Version-

Dell ≫ Poweredge R6625 Firmware Version < 1.6.8

Dell ≫ Poweredge R6625 Version-

Dell ≫ Poweredge R7625 Firmware Version < 1.6.8

Dell ≫ Poweredge R7625 Version-

Dell ≫ Poweredge C6615 Firmware Version < 1.1.2

Dell ≫ Poweredge C6615 Version-

Dell ≫ Poweredge R650 Firmware Version < 1.12.1

Dell ≫ Poweredge R650 Version-

Dell ≫ Poweredge R750 Firmware Version < 1.12.1

Dell ≫ Poweredge R750 Version-

Dell ≫ Poweredge R750xa Firmware Version < 1.12.1

Dell ≫ Poweredge R750xa Version-

Dell ≫ Poweredge C6520 Firmware Version < 1.12.1

Dell ≫ Poweredge C6520 Version-

Dell ≫ Poweredge Mx750c Firmware Version < 1.12.1

Dell ≫ Poweredge Mx750c Version-

Dell ≫ Poweredge R550 Firmware Version < 1.12.1

Dell ≫ Poweredge R550 Version-

Dell ≫ Poweredge R450 Firmware Version < 1.12.1

Dell ≫ Poweredge R450 Version-

Dell ≫ Poweredge R650xs Firmware Version < 1.12.1

Dell ≫ Poweredge R650xs Version-

Dell ≫ Poweredge R750xs Firmware Version < 1.12.1

Dell ≫ Poweredge R750xs Version-

Dell ≫ Poweredge T550 Firmware Version < 1.12.1

Dell ≫ Poweredge T550 Version-

Dell ≫ Poweredge Xr11 Firmware Version < 1.12.1

Dell ≫ Poweredge Xr11 Version-

Dell ≫ Poweredge Xr12 Firmware Version < 1.12.1

Dell ≫ Poweredge Xr12 Version-

Dell ≫ Poweredge T150 Firmware Version < 1.8.1

Dell ≫ Poweredge T150 Version-

Dell ≫ Poweredge T350 Firmware Version < 1.8.1

Dell ≫ Poweredge T350 Version-

Dell ≫ Poweredge R250 Firmware Version < 1.8.1

Dell ≫ Poweredge R250 Version-

Dell ≫ Poweredge R350 Firmware Version < 1.8.1

Dell ≫ Poweredge R350 Version-

Dell ≫ Poweredge Xr4510c Firmware Version < 1.13.3

Dell ≫ Poweredge Xr4510c Version-

Dell ≫ Poweredge Xr4520c Firmware Version < 1.13.3

Dell ≫ Poweredge Xr4520c Version-

Dell ≫ Poweredge R6515 Firmware Version < 2.13.3

Dell ≫ Poweredge R6515 Version-

Dell ≫ Poweredge R6525 Firmware Version < 2.13.3

Dell ≫ Poweredge R6525 Version-

Dell ≫ Poweredge R7515 Firmware Version < 2.13.3

Dell ≫ Poweredge R7515 Version-

Dell ≫ Poweredge R7525 Firmware Version < 2.13.3

Dell ≫ Poweredge R7525 Version-

Dell ≫ Poweredge C6525 Firmware Version < 2.13.3

Dell ≫ Poweredge C6525 Version-

Dell ≫ Poweredge Xe8545 Firmware Version < 2.13.3

Dell ≫ Poweredge Xe8545 Version-

Dell ≫ Poweredge R740 Firmware Version < 2.20.1

Dell ≫ Poweredge R740 Version-

Dell ≫ Poweredge R640 Firmware Version < 2.20.1

Dell ≫ Poweredge R640 Version-

Dell ≫ Poweredge R940 Firmware Version < 2.20.1

Dell ≫ Poweredge R940 Version-

Dell ≫ Poweredge R540 Firmware Version < 2.20.1

Dell ≫ Poweredge R540 Version-

Dell ≫ Poweredge R440 Firmware Version < 2.20.1

Dell ≫ Poweredge R440 Version-

Dell ≫ Poweredge T440 Firmware Version < 2.20.1

Dell ≫ Poweredge T440 Version-

Dell ≫ Poweredge Xr2 Firmware Version < 2.20.1

Dell ≫ Poweredge Xr2 Version-

Dell ≫ Poweredge R840 Firmware Version < 2.20.1

Dell ≫ Poweredge R840 Version-

Dell ≫ Poweredge T640 Firmware Version < 2.20.1

Dell ≫ Poweredge T640 Version-

Dell ≫ Poweredge C6420 Firmware Version < 2.20.1

Dell ≫ Poweredge C6420 Version-

Dell ≫ Poweredge Fc640 Firmware Version < 2.20.1

Dell ≫ Poweredge Fc640 Version-

Dell ≫ Poweredge M640 Firmware Version < 2.20.1

Dell ≫ Poweredge M640 Version-

Dell ≫ Poweredge C4140 Firmware Version < 2.20.1

Dell ≫ Poweredge C4140 Version-

Dell ≫ Poweredge Mx740c Firmware Version < 2.20.1

Dell ≫ Poweredge Mx740c Version-

Dell ≫ Poweredge Mx840c Firmware Version < 2.20.1

Dell ≫ Poweredge Mx840c Version-

Dell ≫ Poweredge R740xd Firmware Version < 2.20.1

Dell ≫ Poweredge R740xd Version-

Dell ≫ Poweredge R740xd2 Firmware Version < 2.20.1

Dell ≫ Poweredge R740xd2 Version-

Dell ≫ Poweredge R940xa Firmware Version < 2.20.1

Dell ≫ Poweredge R940xa Version-

Dell ≫ Poweredge Xe2420 Firmware Version < 2.20.0

Dell ≫ Poweredge Xe2420 Version-

Dell ≫ Poweredge Xe7420 Firmware Version < 2.20.0

Dell ≫ Poweredge Xe7420 Version-

Dell ≫ Poweredge Xe7440 Firmware Version < 2.20.0

Dell ≫ Poweredge Xe7440 Version-

Dell ≫ Poweredge T140 Firmware Version < 2.15.1

Dell ≫ Poweredge T140 Version-

Dell ≫ Poweredge T340 Firmware Version < 2.15.1

Dell ≫ Poweredge T340 Version-

Dell ≫ Poweredge R240 Firmware Version < 2.15.1

Dell ≫ Poweredge R240 Version-

Dell ≫ Poweredge R340 Firmware Version < 2.15.1

Dell ≫ Poweredge R340 Version-

Dell ≫ Poweredge R6415 Firmware Version < 1.21.0

Dell ≫ Poweredge R6415 Version-

Dell ≫ Poweredge R7415 Firmware Version < 1.21.0

Dell ≫ Poweredge R7415 Version-

Dell ≫ Poweredge R7425 Firmware Version < 1.21.0

Dell ≫ Poweredge R7425 Version-

Dell ≫ Poweredge R930 Firmware Version < 2.13.0

Dell ≫ Poweredge R930 Version-

Dell ≫ Poweredge R730 Firmware Version < 2.18.1

Dell ≫ Poweredge R730 Version-

Dell ≫ Poweredge R730xd Firmware Version < 2.18.1

Dell ≫ Poweredge R730xd Version-

Dell ≫ Poweredge R630 Firmware Version < 2.18.1

Dell ≫ Poweredge R630 Version-

Dell ≫ Poweredge C4130 Firmware Version < 2.18.1

Dell ≫ Poweredge C4130 Version-

Dell ≫ Poweredge M630 Firmware Version < 2.18.1

Dell ≫ Poweredge M630 Version-

Dell ≫ Poweredge Fc630 Firmware Version < 2.18.1

Dell ≫ Poweredge Fc630 Version-

Dell ≫ Poweredge Fc430 Firmware Version < 2.18.1

Dell ≫ Poweredge Fc430 Version-

Dell ≫ Poweredge M830 Firmware Version < 2.18.1

Dell ≫ Poweredge M830 Version-

Dell ≫ Poweredge Fc830 Firmware Version < 2.18.1

Dell ≫ Poweredge Fc830 Version-

Dell ≫ Poweredge T630 Firmware Version < 2.18.2

Dell ≫ Poweredge T630 Version-

Dell ≫ Poweredge R530 Firmware Version < 2.18.2

Dell ≫ Poweredge R530 Version-

Dell ≫ Poweredge R430 Firmware Version < 2.18.2

Dell ≫ Poweredge R430 Version-

Dell ≫ Poweredge T430 Firmware Version < 2.18.2

Dell ≫ Poweredge T430 Version-

Dell ≫ Poweredge C6320 Firmware Version < 2.18.2

Dell ≫ Poweredge C6320 Version-

Dell ≫ Poweredge T130 Firmware Version < 2.19.1

Dell ≫ Poweredge T130 Version-

Dell ≫ Poweredge R230 Firmware Version < 2.19.1

Dell ≫ Poweredge R230 Version-

Dell ≫ Poweredge T330 Firmware Version < 2.19.1

Dell ≫ Poweredge T330 Version-

Dell ≫ Poweredge R330 Firmware Version < 2.19.1

Dell ≫ Poweredge R330 Version-

Dell ≫ Poweredge R830 Firmware Version < 1.18.1

Dell ≫ Poweredge R830 Version-

Dell ≫ Poweredge M640 (pe Vrtx) Firmware Version < 2.20.1

Dell ≫ Poweredge M640 (pe Vrtx) Version-

Dell ≫ Poweredge M630 (pe Vrtx) Firmware Version < 2.18.1

Dell ≫ Poweredge M630 (pe Vrtx) Version-

Dell ≫ Poweredge M830 (pe Vrtx) Firmware Version < 2.18.1

Dell ≫ Poweredge M830 (pe Vrtx) Version-

Dell ≫ Dss 8440 Firmware Version < 2.20.0

Dell ≫ Dss 8440 Version-

Dell ≫ Nx3230 Firmware Version < 2.18.1

Dell ≫ Nx3230 Version-

Dell ≫ Nx3330 Firmware Version < 2.18.1

Dell ≫ Nx3330 Version-

Dell ≫ Nx430 Firmware Version < 2.19.1

Dell ≫ Nx430 Version-

Dell ≫ Emc Storage Nx3240 Firmware Version < 2.20.1

Dell ≫ Emc Storage Nx3240 Version-

Dell ≫ Emc Storage Nx3340 Firmware Version < 2.20.1

Dell ≫ Emc Storage Nx3340 Version-

Dell ≫ Emc Nx440 Firmware Version < 2.15.1

Dell ≫ Nx440 Version-

Dell ≫ Emc Xc Core Xc450 Firmware Version < 1.12.1

Dell ≫ Emc Xc Core Xc450 Version-

Dell ≫ Emc Xc Core Xc650 Firmware Version < 1.12.1

Dell ≫ Emc Xc Core Xc650 Version-

Dell ≫ Emc Xc Core Xc750 Firmware Version < 1.12.1

Dell ≫ Emc Xc Core Xc750 Version-

Dell ≫ Emc Xc Core Xc750xa Firmware Version < 1.12.1

Dell ≫ Emc Xc Core Xc750xa Version-

Dell ≫ Emc Xc Core Xc6520 Firmware Version < 1.12.1

Dell ≫ Emc Xc Core Xc6520 Version-

Dell ≫ Emc Xc Core Xcxr2 Firmware Version < 2.20.1

Dell ≫ Emc Xc Core Xcxr2 Version-

Dell ≫ Emc Xc Core Xc740xd2 Firmware Version < 2.20.1

Dell ≫ Emc Xc Core Xc740xd2 Version-

Dell ≫ Emc Xc Core Xc7525 Firmware Version < 2.13.3

Dell ≫ Emc Xc Core Xc7525 Version-

Dell ≫ Emc Xc Core 6420 Firmware Version < 2.20.1

Dell ≫ Emc Xc Core 6420 Version-

Dell ≫ Emc Xc Core Xc640 Firmware Version < 2.20.1

Dell ≫ Emc Xc Core Xc640 Version-

Dell ≫ Emc Xc Core Xc740xd Firmware Version < 2.20.1

Dell ≫ Emc Xc Core Xc740xd Version-

Dell ≫ Emc Xc Core Xc940 Firmware Version < 2.20.1

Dell ≫ Emc Xc Core Xc940 Version-

Dell ≫ Xc Core Xc660 Firmware Version < 1.6.6

Dell ≫ Xc Core Xc660 Version-

Dell ≫ Xc Core Xc760 Firmware Version < 1.6.6

Dell ≫ Xc Core Xc760 Version-

Dell ≫ Xc6320 Hyperconverged Appliance Firmware Version < 2.18.2

Dell ≫ Xc6320 Hyperconverged Appliance Version-

Dell ≫ Xc430 Hyperconverged Appliance Firmware Version < 2.18.2

Dell ≫ Xc430 Hyperconverged Appliance Version-

Dell ≫ Xc630 Hyperconverged Appliance Firmware Version < 2.18.1

Dell ≫ Xc630 Hyperconverged Appliance Version-

Dell ≫ Xc730 Hyperconverged Appliance Firmware Version < 2.18.1

Dell ≫ Xc730 Hyperconverged Appliance Version-

Dell ≫ Xc730xd Hyperconverged Appliance Firmware Version < 2.18.1

Dell ≫ Xc730xd Hyperconverged Appliance Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.155

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
security_alert@emc.com	8.8	2	6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

https://www.dell.com/support/kbdoc/en-us/000219550/dsa-2023-361-security-update-for-dell-poweredge-server-bios-for-an-improper-privilege-management-security-vulnerability

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-32460

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-32460

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-32460

EUVD