CVE-2023-44297
Severity Score
6.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. An unauthenticated physical attacker could potentially exploit this vulnerability, leading to information disclosure, information tampering, code execution, denial of service.
Las plataformas Dell PowerEdge 16G Intel E5 BIOS y Dell Precision BIOS, versión 1.4.4, contienen una vulnerabilidad de seguridad de código de depuración activa. Un atacante físico no autenticado podría explotar esta vulnerabilidad, lo que provocaría la divulgación de información, la manipulación de información, la ejecución de código y la denegación de servicio.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-09-28 CVE Reserved
- 2023-12-05 CVE Published
- 2023-12-12 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-667: Improper Locking
- CWE-1234: Hardware Internal or Debug Modes Allow Override of Locks
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dell Search vendor "Dell" | Poweredge R660 Firmware Search vendor "Dell" for product "Poweredge R660 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R660 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R660 Search vendor "Dell" for product "Poweredge R660" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R760 Firmware Search vendor "Dell" for product "Poweredge R760 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R760 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R760 Search vendor "Dell" for product "Poweredge R760" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge C6620 Firmware Search vendor "Dell" for product "Poweredge C6620 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge C6620 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge C6620 Search vendor "Dell" for product "Poweredge C6620" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge Mx760c Firmware Search vendor "Dell" for product "Poweredge Mx760c Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge Mx760c Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge Mx760c Search vendor "Dell" for product "Poweredge Mx760c" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R860 Firmware Search vendor "Dell" for product "Poweredge R860 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R860 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R860 Search vendor "Dell" for product "Poweredge R860" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R960 Firmware Search vendor "Dell" for product "Poweredge R960 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R960 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R960 Search vendor "Dell" for product "Poweredge R960" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge Hs5610 Firmware Search vendor "Dell" for product "Poweredge Hs5610 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge Hs5610 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge Hs5610 Search vendor "Dell" for product "Poweredge Hs5610" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge Hs5620 Firmware Search vendor "Dell" for product "Poweredge Hs5620 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge Hs5620 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge Hs5620 Search vendor "Dell" for product "Poweredge Hs5620" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R660xs Firmware Search vendor "Dell" for product "Poweredge R660xs Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R660xs Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R660xs Search vendor "Dell" for product "Poweredge R660xs" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R760xs Firmware Search vendor "Dell" for product "Poweredge R760xs Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R760xs Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R760xs Search vendor "Dell" for product "Poweredge R760xs" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R760xd2 Firmware Search vendor "Dell" for product "Poweredge R760xd2 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R760xd2 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R760xd2 Search vendor "Dell" for product "Poweredge R760xd2" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge T560 Firmware Search vendor "Dell" for product "Poweredge T560 Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge T560 Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge T560 Search vendor "Dell" for product "Poweredge T560" | - | - |
Safe
|
| Dell Search vendor "Dell" | Poweredge R760xa Firmware Search vendor "Dell" for product "Poweredge R760xa Firmware" | 1.4.4 Search vendor "Dell" for product "Poweredge R760xa Firmware" and version "1.4.4" | - |
Affected
| in | Dell Search vendor "Dell" | Poweredge R760xa Search vendor "Dell" for product "Poweredge R760xa" | - | - |
Safe
|