← Back

CVE-2023-39251

nvd nist
Published: Dec 22, 2023Modified: Nov 21, 2024

JSON object

Loading...
6.7
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.8 / Impact: 5.9
Source: NVD

Description

Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system.

Affected (13)

Dell
13 products
Inspiron 7510 Firmware
Inspiron 7610 Firmware
Latitude 5430 Rugged Firmware
Latitude 5521 Firmware
Latitude 7330 Rugged Firmware
Precision 3561 Firmware
Precision 5560 Firmware
Precision 5760 Firmware
Precision 7560 Firmware
Precision 7760 Firmware
Vostro 7510 Firmware
Xps 15 9510 Firmware
Xps 17 9710 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Inspiron 7510 Firmware
Before 1.20.0
Running on/withPlatform Versions
Dell
Inspiron 7510
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Inspiron 7610 Firmware
Before 1.20.0
Running on/withPlatform Versions
Dell
Inspiron 7610
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Latitude 5430 Rugged Firmware
Before 1.23.0
Running on/withPlatform Versions
Dell
Latitude 5430 Rugged
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Latitude 5521 Firmware
Before 1.27.0
Running on/withPlatform Versions
Dell
Latitude 5521
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Latitude 7330 Rugged Firmware
Before 1.23.0
Running on/withPlatform Versions
Dell
Latitude 7330 Rugged
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Precision 3561 Firmware
Before 1.27.0
Running on/withPlatform Versions
Dell
Precision 3561
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Precision 5560 Firmware
Before 1.25.0
Running on/withPlatform Versions
Dell
Precision 5560
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Precision 5760 Firmware
Before 1.24.0
Running on/withPlatform Versions
Dell
Precision 5760
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Precision 7560 Firmware
Before 1.27.0
Running on/withPlatform Versions
Dell
Precision 7560
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Precision 7760 Firmware
Before 1.27.0
Running on/withPlatform Versions
Dell
Precision 7760
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Vostro 7510 Firmware
Before 1.20.0
Running on/withPlatform Versions
Dell
Vostro 7510
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xps 15 9510 Firmware
Before 1.25.0
Running on/withPlatform Versions
Dell
Xps 15 9510
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xps 17 9710 Firmware
Before 1.24.0
Running on/withPlatform Versions
Dell
Xps 17 9710
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

Source: security_alert@emc.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.