Vulnerability Description
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Vostro 5625 Firmware | < 1.13.0 |
| Dell | Vostro 5625 | - |
| Dell | Vostro 5515 Firmware | < 1.19.0 |
| Dell | Vostro 5515 | - |
| Dell | Vostro 5415 Firmware | < 1.19.0 |
| Dell | Vostro 5415 | - |
| Dell | Vostro 3405 Firmware | < 1.16.0 |
| Dell | Vostro 3405 | - |
| Dell | Vostro 16 5635 Firmware | < 1.8.0 |
| Dell | Vostro 16 5635 | - |
| Dell | Vostro 15 3535 Firmware | < 1.12.0 |
| Dell | Vostro 15 3535 | - |
| Dell | Vostro 15 3525 Firmware | < 1.15.1 |
| Dell | Vostro 15 3525 | - |
| Dell | Vostro 15 3515 Firmware | < 1.16.0 |
| Dell | Vostro 15 3515 | - |
| Dell | Vostro 14 3435 Firmware | < 1.12.0 |
| Dell | Vostro 14 3435 | - |
| Dell | Vostro 14 3425 Firmware | < 1.15.1 |
| Dell | Vostro 14 3425 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000215644/dsa-2023-222-security-update-Vendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000215644/dsa-2023-222-security-update-Vendor Advisory
FAQ
What is CVE-2023-32475?
CVE-2023-32475 is a vulnerability with a CVSS score of 7.6 (HIGH). Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.
How severe is CVE-2023-32475?
CVE-2023-32475 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-32475?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Vostro 5625 Firmware, Dell Vostro 5625, Dell Vostro 5515 Firmware, Dell Vostro 5515, Dell Vostro 5415 Firmware.