CVE-2023-32469
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
16/11/2023
Last modified:
29/11/2023
Description
<br />
Dell Precision Tower BIOS contains an Improper Input Validation vulnerability. A locally authenticated malicious user with admin privileges could potentially exploit this vulnerability to perform arbitrary code execution.<br />
<br />
Impact
Base Score 3.x
6.70
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:dell:precision_5820_firmware:*:*:*:*:*:*:*:* | 2.32.0 (excluding) | |
| cpe:2.3:h:dell:precision_5820:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:dell:precision_7820_firmware:*:*:*:*:*:*:*:* | 2.36.0 (excluding) | |
| cpe:2.3:h:dell:precision_7820:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:dell:precision_7920_firmware:*:*:*:*:*:*:*:* | 2.36.0 (excluding) | |
| cpe:2.3:h:dell:precision_7920:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page



