CVE-2023-39251
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system.
Dell BIOS contiene una vulnerabilidad de validación de entrada incorrecta. Un usuario malicioso local con altos privilegios podría explotar esta vulnerabilidad para dañar la memoria del sistema.
*Credits:
Dell Technologies would like to thank Eason for reporting this issue.
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-07-26 CVE Reserved
- 2023-12-22 CVE Published
- 2023-12-23 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.dell.com/support/kbdoc/en-us/000217707/dsa-2023-342 | 2024-02-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dell Search vendor "Dell" | Inspiron 7510 Firmware Search vendor "Dell" for product "Inspiron 7510 Firmware" | < 1.20.0 Search vendor "Dell" for product "Inspiron 7510 Firmware" and version " < 1.20.0" | - |
Affected
| in | Dell Search vendor "Dell" | Inspiron 7510 Search vendor "Dell" for product "Inspiron 7510" | - | - |
Safe
|
| Dell Search vendor "Dell" | Inspiron 7610 Firmware Search vendor "Dell" for product "Inspiron 7610 Firmware" | < 1.20.0 Search vendor "Dell" for product "Inspiron 7610 Firmware" and version " < 1.20.0" | - |
Affected
| in | Dell Search vendor "Dell" | Inspiron 7610 Search vendor "Dell" for product "Inspiron 7610" | - | - |
Safe
|
| Dell Search vendor "Dell" | Latitude 5430 Rugged Firmware Search vendor "Dell" for product "Latitude 5430 Rugged Firmware" | < 1.23.0 Search vendor "Dell" for product "Latitude 5430 Rugged Firmware" and version " < 1.23.0" | - |
Affected
| in | Dell Search vendor "Dell" | Latitude 5430 Rugged Search vendor "Dell" for product "Latitude 5430 Rugged" | - | - |
Safe
|
| Dell Search vendor "Dell" | Latitude 5521 Firmware Search vendor "Dell" for product "Latitude 5521 Firmware" | < 1.27.0 Search vendor "Dell" for product "Latitude 5521 Firmware" and version " < 1.27.0" | - |
Affected
| in | Dell Search vendor "Dell" | Latitude 5521 Search vendor "Dell" for product "Latitude 5521" | - | - |
Safe
|
| Dell Search vendor "Dell" | Latitude 7330 Rugged Firmware Search vendor "Dell" for product "Latitude 7330 Rugged Firmware" | < 1.23.0 Search vendor "Dell" for product "Latitude 7330 Rugged Firmware" and version " < 1.23.0" | - |
Affected
| in | Dell Search vendor "Dell" | Latitude 7330 Rugged Search vendor "Dell" for product "Latitude 7330 Rugged" | - | - |
Safe
|
| Dell Search vendor "Dell" | Precision 3561 Firmware Search vendor "Dell" for product "Precision 3561 Firmware" | < 1.27.0 Search vendor "Dell" for product "Precision 3561 Firmware" and version " < 1.27.0" | - |
Affected
| in | Dell Search vendor "Dell" | Precision 3561 Search vendor "Dell" for product "Precision 3561" | - | - |
Safe
|
| Dell Search vendor "Dell" | Precision 5560 Firmware Search vendor "Dell" for product "Precision 5560 Firmware" | < 1.25.0 Search vendor "Dell" for product "Precision 5560 Firmware" and version " < 1.25.0" | - |
Affected
| in | Dell Search vendor "Dell" | Precision 5560 Search vendor "Dell" for product "Precision 5560" | - | - |
Safe
|
| Dell Search vendor "Dell" | Precision 5760 Firmware Search vendor "Dell" for product "Precision 5760 Firmware" | < 1.24.0 Search vendor "Dell" for product "Precision 5760 Firmware" and version " < 1.24.0" | - |
Affected
| in | Dell Search vendor "Dell" | Precision 5760 Search vendor "Dell" for product "Precision 5760" | - | - |
Safe
|
| Dell Search vendor "Dell" | Precision 7560 Firmware Search vendor "Dell" for product "Precision 7560 Firmware" | < 1.27.0 Search vendor "Dell" for product "Precision 7560 Firmware" and version " < 1.27.0" | - |
Affected
| in | Dell Search vendor "Dell" | Precision 7560 Search vendor "Dell" for product "Precision 7560" | - | - |
Safe
|
| Dell Search vendor "Dell" | Precision 7760 Firmware Search vendor "Dell" for product "Precision 7760 Firmware" | < 1.27.0 Search vendor "Dell" for product "Precision 7760 Firmware" and version " < 1.27.0" | - |
Affected
| in | Dell Search vendor "Dell" | Precision 7760 Search vendor "Dell" for product "Precision 7760" | - | - |
Safe
|
| Dell Search vendor "Dell" | Vostro 7510 Firmware Search vendor "Dell" for product "Vostro 7510 Firmware" | < 1.20.0 Search vendor "Dell" for product "Vostro 7510 Firmware" and version " < 1.20.0" | - |
Affected
| in | Dell Search vendor "Dell" | Vostro 7510 Search vendor "Dell" for product "Vostro 7510" | - | - |
Safe
|
| Dell Search vendor "Dell" | Xps 15 9510 Firmware Search vendor "Dell" for product "Xps 15 9510 Firmware" | < 1.25.0 Search vendor "Dell" for product "Xps 15 9510 Firmware" and version " < 1.25.0" | - |
Affected
| in | Dell Search vendor "Dell" | Xps 15 9510 Search vendor "Dell" for product "Xps 15 9510" | - | - |
Safe
|
| Dell Search vendor "Dell" | Xps 17 9710 Firmware Search vendor "Dell" for product "Xps 17 9710 Firmware" | < 1.24.0 Search vendor "Dell" for product "Xps 17 9710 Firmware" and version " < 1.24.0" | - |
Affected
| in | Dell Search vendor "Dell" | Xps 17 9710 Search vendor "Dell" for product "Xps 17 9710" | - | - |
Safe
|