// For flags

CVE-2023-39251

 

Severity Score

6.7
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system.

Dell BIOS contiene una vulnerabilidad de validación de entrada incorrecta. Un usuario malicioso local con altos privilegios podría explotar esta vulnerabilidad para dañar la memoria del sistema.

*Credits: Dell Technologies would like to thank Eason for reporting this issue.
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
High
Availability
Low
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2023-07-26 CVE Reserved
  • 2023-12-22 CVE Published
  • 2023-12-23 EPSS Updated
  • 2024-08-02 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Dell
Search vendor "Dell"
Inspiron 7510 Firmware
Search vendor "Dell" for product "Inspiron 7510 Firmware"
< 1.20.0
Search vendor "Dell" for product "Inspiron 7510 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 7510
Search vendor "Dell" for product "Inspiron 7510"
--
Safe
Dell
Search vendor "Dell"
Inspiron 7610 Firmware
Search vendor "Dell" for product "Inspiron 7610 Firmware"
< 1.20.0
Search vendor "Dell" for product "Inspiron 7610 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Inspiron 7610
Search vendor "Dell" for product "Inspiron 7610"
--
Safe
Dell
Search vendor "Dell"
Latitude 5430 Rugged Firmware
Search vendor "Dell" for product "Latitude 5430 Rugged Firmware"
< 1.23.0
Search vendor "Dell" for product "Latitude 5430 Rugged Firmware" and version " < 1.23.0"
-
Affected
in Dell
Search vendor "Dell"
Latitude 5430 Rugged
Search vendor "Dell" for product "Latitude 5430 Rugged"
--
Safe
Dell
Search vendor "Dell"
Latitude 5521 Firmware
Search vendor "Dell" for product "Latitude 5521 Firmware"
< 1.27.0
Search vendor "Dell" for product "Latitude 5521 Firmware" and version " < 1.27.0"
-
Affected
in Dell
Search vendor "Dell"
Latitude 5521
Search vendor "Dell" for product "Latitude 5521"
--
Safe
Dell
Search vendor "Dell"
Latitude 7330 Rugged Firmware
Search vendor "Dell" for product "Latitude 7330 Rugged Firmware"
< 1.23.0
Search vendor "Dell" for product "Latitude 7330 Rugged Firmware" and version " < 1.23.0"
-
Affected
in Dell
Search vendor "Dell"
Latitude 7330 Rugged
Search vendor "Dell" for product "Latitude 7330 Rugged"
--
Safe
Dell
Search vendor "Dell"
Precision 3561 Firmware
Search vendor "Dell" for product "Precision 3561 Firmware"
< 1.27.0
Search vendor "Dell" for product "Precision 3561 Firmware" and version " < 1.27.0"
-
Affected
in Dell
Search vendor "Dell"
Precision 3561
Search vendor "Dell" for product "Precision 3561"
--
Safe
Dell
Search vendor "Dell"
Precision 5560 Firmware
Search vendor "Dell" for product "Precision 5560 Firmware"
< 1.25.0
Search vendor "Dell" for product "Precision 5560 Firmware" and version " < 1.25.0"
-
Affected
in Dell
Search vendor "Dell"
Precision 5560
Search vendor "Dell" for product "Precision 5560"
--
Safe
Dell
Search vendor "Dell"
Precision 5760 Firmware
Search vendor "Dell" for product "Precision 5760 Firmware"
< 1.24.0
Search vendor "Dell" for product "Precision 5760 Firmware" and version " < 1.24.0"
-
Affected
in Dell
Search vendor "Dell"
Precision 5760
Search vendor "Dell" for product "Precision 5760"
--
Safe
Dell
Search vendor "Dell"
Precision 7560 Firmware
Search vendor "Dell" for product "Precision 7560 Firmware"
< 1.27.0
Search vendor "Dell" for product "Precision 7560 Firmware" and version " < 1.27.0"
-
Affected
in Dell
Search vendor "Dell"
Precision 7560
Search vendor "Dell" for product "Precision 7560"
--
Safe
Dell
Search vendor "Dell"
Precision 7760 Firmware
Search vendor "Dell" for product "Precision 7760 Firmware"
< 1.27.0
Search vendor "Dell" for product "Precision 7760 Firmware" and version " < 1.27.0"
-
Affected
in Dell
Search vendor "Dell"
Precision 7760
Search vendor "Dell" for product "Precision 7760"
--
Safe
Dell
Search vendor "Dell"
Vostro 7510 Firmware
Search vendor "Dell" for product "Vostro 7510 Firmware"
< 1.20.0
Search vendor "Dell" for product "Vostro 7510 Firmware" and version " < 1.20.0"
-
Affected
in Dell
Search vendor "Dell"
Vostro 7510
Search vendor "Dell" for product "Vostro 7510"
--
Safe
Dell
Search vendor "Dell"
Xps 15 9510 Firmware
Search vendor "Dell" for product "Xps 15 9510 Firmware"
< 1.25.0
Search vendor "Dell" for product "Xps 15 9510 Firmware" and version " < 1.25.0"
-
Affected
in Dell
Search vendor "Dell"
Xps 15 9510
Search vendor "Dell" for product "Xps 15 9510"
--
Safe
Dell
Search vendor "Dell"
Xps 17 9710 Firmware
Search vendor "Dell" for product "Xps 17 9710 Firmware"
< 1.24.0
Search vendor "Dell" for product "Xps 17 9710 Firmware" and version " < 1.24.0"
-
Affected
in Dell
Search vendor "Dell"
Xps 17 9710
Search vendor "Dell" for product "Xps 17 9710"
--
Safe