cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2024-0158,https://securityvulnerability.io/vulnerability/CVE-2024-0158,Dell BIOS Vulnerability Could Lead to Denial of Service and Escalation of Privileges,"Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability to modify a UEFI variable, leading to denial of service and escalation of privileges",Dell,Cpg BiOS,6.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-07-02T06:20:44.735Z,0 CVE-2024-32855,https://securityvulnerability.io/vulnerability/CVE-2024-32855,Dell BIOS Vulnerability Could Lead to Information Tampering,"Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.",Dell,Cpg BiOS,3.8,LOW,0.0004299999854993075,false,false,false,false,,false,false,2024-06-25T04:06:39.172Z,0 CVE-2024-32860,https://securityvulnerability.io/vulnerability/CVE-2024-32860,Dell BIOS Vulnerability Could Lead to Code Execution,"The Dell Client Platform BIOS has been identified with an improperly validated input vulnerability within an externally developed component. This flaw permits a high privileged attacker who has local access to the system to potentially exploit the vulnerability, leading to arbitrary code execution. It is critical for users of affected Dell Client Platform BIOS versions to assess their security measures and apply any available patches or mitigations to protect against potential exploitation.",Dell,Cpg BiOS,8.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-13T13:00:19.384Z,0 CVE-2024-32858,https://securityvulnerability.io/vulnerability/CVE-2024-32858,Dell BIOS Vulnerability Could Lead to Code Execution,"The Dell Client Platform BIOS contains an Improper Input Validation vulnerability which resides in an externally developed component. This vulnerability can be exploited by a high privileged local attacker, potentially leading to unauthorized code execution on the affected system. It is crucial for organizations to review the affected versions of the BIOS and apply the recommended remediation measures to mitigate the risk associated with this weakness. For detailed information, please refer to the vendor advisory.",Dell,Cpg BiOS,8.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-13T12:48:29.724Z,0 CVE-2024-32859,https://securityvulnerability.io/vulnerability/CVE-2024-32859,Dell BIOS Vulnerability Could Lead to Code Execution,"A vulnerability exists in the Dell Client Platform BIOS due to improper input validation in an externally developed component. This flaw may allow a high-privileged attacker with local access to exploit the vulnerability, potentially leading to arbitrary code execution. Users of affected systems are advised to apply security patches provided by Dell to mitigate the risks associated with this vulnerability.",Dell,Cpg BiOS,8.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-13T12:39:41.863Z,0 CVE-2024-32856,https://securityvulnerability.io/vulnerability/CVE-2024-32856,Dell BIOS Vulnerability Could Lead to Information Disclosure,"Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.",Dell,Cpg BiOS,6,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-06-13T11:51:03.183Z,0 CVE-2024-28970,https://securityvulnerability.io/vulnerability/CVE-2024-28970,Dell Client BIOS Vulnerability Could Lead to Platform Denial of Service,"Dell Client BIOS contains an Out-of-bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to platform denial of service.",Dell,Cpg BiOS,4.4,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-06-12T06:51:49.004Z,0 CVE-2024-0160,https://securityvulnerability.io/vulnerability/CVE-2024-0160,BIOS Authorization Vulnerability Affects Dell Client Platform,Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical access to the system could potentially exploit this vulnerability by bypassing BIOS authorization to modify settings in the BIOS.,Dell,Cpg BiOS,6.8,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2024-06-12T06:41:33.041Z,0 CVE-2023-32475,https://securityvulnerability.io/vulnerability/CVE-2023-32475,BIOS Vulnerability Allows Arbitrary Code Execution with Physical Access,"Dell BIOS has a vulnerability due to the absence of support for integrity checks, which allows an attacker with physical access to the system to bypass existing security mechanisms. This vulnerability could potentially enable the execution of arbitrary code on the affected system, posing significant risks to data integrity and system security.",Dell,Cpg BiOS,7.6,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-06-07T02:13:17.515Z,0 CVE-2024-22429,https://securityvulnerability.io/vulnerability/CVE-2024-22429,Dell BIOS Vulnerability Could Lead to Arbitrary Code Execution,"The BIOS firmware provided by Dell is affected by an improper input validation vulnerability. This issue allows a local, authenticated attacker who possesses admin privileges to exploit the vulnerability, which may lead to arbitrary code execution. Such exploitation can pose significant risks to the integrity and availability of the system, allowing attackers to potentially manipulate the environment beyond intended security measures. Users are advised to review their BIOS versions and apply appropriate patches or mitigations provided by Dell.",Dell,Cpg BiOS,7.5,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-05-17T16:15:00.000Z,0 CVE-2024-22448,https://securityvulnerability.io/vulnerability/CVE-2024-22448,Dell BIOS Vulnerability Could Lead to Denial of Service,"Dell BIOS contains an Out-of-Bounds Write vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.",Dell,Cpg BiOS,4.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-04-10T07:30:08.507Z,0 CVE-2023-48674,https://securityvulnerability.io/vulnerability/CVE-2023-48674,Dell Platform BIOS Vulnerable to Improper Null Termination Attack,Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.,Dell,Cpg Bios,6.8,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-03-01T12:35:56.866Z,0 CVE-2023-28063,https://securityvulnerability.io/vulnerability/CVE-2023-28063,Dell BIOS Vulnerability Could Lead to Denial of Service,"A vulnerability exists in Dell BIOS due to a signed to unsigned conversion error. This flaw allows a local authenticated user with administrative privileges to exploit the vulnerability, which could lead to a denial of service condition. Such an exploit can compromise the security and reliability of affected systems, requiring urgent attention for mitigation.",Dell,Cpg BiOS,6.7,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2024-02-06T07:38:54.321Z,0 CVE-2023-39251,https://securityvulnerability.io/vulnerability/CVE-2023-39251,," Dell BIOS contains an Improper Input Validation vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability in order to corrupt memory on the system. ",Dell,CPG BIOS,6.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2023-12-22T18:15:00.000Z,0 CVE-2023-43088,https://securityvulnerability.io/vulnerability/CVE-2023-43088,Pre-Boot Direct Memory Access Vulnerability in Dell Client BIOS,"The Dell Client BIOS contains a vulnerability that allows for direct memory access (DMA) during the pre-boot phase. This vulnerability can potentially be exploited by an authenticated attacker with physical access to the system, which may lead to arbitrary code execution on the affected device. It highlights significant security risks, especially in environments where physical access controls may be lax.",Dell,CPG BIOS,7.2,HIGH,0.0005499999970197678,false,false,false,false,,false,false,2023-12-22T18:15:00.000Z,0 CVE-2023-32453,https://securityvulnerability.io/vulnerability/CVE-2023-32453,," Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator. ",Dell,Cpg BiOS,4.6,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2023-08-16T20:15:00.000Z,0 CVE-2023-28075,https://securityvulnerability.io/vulnerability/CVE-2023-28075,," Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the system. ",Dell,Cpg BiOS,6.9,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-08-16T20:15:00.000Z,0 CVE-2023-28036,https://securityvulnerability.io/vulnerability/CVE-2023-28036,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28026,https://securityvulnerability.io/vulnerability/CVE-2023-28026,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28073,https://securityvulnerability.io/vulnerability/CVE-2023-28073,Improper Authentication Vulnerability in Dell BIOS,"Dell BIOS has a vulnerability that allows a malicious user with local authentication to bypass certain authentication mechanisms. This potential exploit can enable unauthorized privilege escalation, compromising the system's integrity and security. Users are encouraged to review the advisory for more information and recommended mitigations.",Dell,Cpg BiOS,8.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-32480,https://securityvulnerability.io/vulnerability/CVE-2023-32480,," Dell BIOS contains an Improper Input Validation vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability to perform arbitrary code execution. ",Dell,Cpg BiOS,6.8,MEDIUM,0.0006200000061653554,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28060,https://securityvulnerability.io/vulnerability/CVE-2023-28060,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28044,https://securityvulnerability.io/vulnerability/CVE-2023-28044,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28034,https://securityvulnerability.io/vulnerability/CVE-2023-28034,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0 CVE-2023-28050,https://securityvulnerability.io/vulnerability/CVE-2023-28050,," Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable. ",Dell,Cpg BiOS,5.1,MEDIUM,0.0004199999966658652,false,false,false,false,,false,false,2023-06-23T11:15:00.000Z,0