CVE-2023-32472 - Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A loc

CVE-2023-32472

Summary

Dell Edge Gateway BIOS, versions 3200 and 5200, contains an out-of-bounds write vulnerability. A local authenticated malicious user with high privileges could potentially exploit this vulnerability leading to exposure of some code in System Management Mode, leading to arbitrary code execution or escalation of privilege.

References

https://www.dell.com/support/kbdoc/en-in/000214917/dsa-2023-225-security-update-for-dell-bios-edge-gateway-5200-and-edge-gateway-3200

Vulnerable Configurations

cpe:2.3:o:dell:edge_gateway_3200_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:edge_gateway_3200_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:edge_gateway_3200:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:edge_gateway_3200:-:*:*:*:*:*:*:*
cpe:2.3:o:dell:edge_gateway_5200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:edge_gateway_5200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:dell:edge_gateway_5200:-:*:*:*:*:*:*:*
cpe:2.3:h:dell:edge_gateway_5200:-:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

26-09-2024 - 12:15

Published

10-07-2024 - 03:15

Last modified

26-09-2024 - 12:15