CVE-2023-32475
HIGHDescription
Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.
Is your site exposed to CVE-2023-32475?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| dell | vostro_5625_firmware |
| dell | vostro_5625 |
| dell | vostro_5515_firmware |
| dell | vostro_5515 |
| dell | vostro_5415_firmware |
| dell | vostro_5415 |
| dell | vostro_3405_firmware |
| dell | vostro_3405 |
| dell | vostro_16_5635_firmware |
| dell | vostro_16_5635 |
| dell | vostro_15_3535_firmware |
| dell | vostro_15_3535 |
| dell | vostro_15_3525_firmware |
| dell | vostro_15_3525 |
| dell | vostro_15_3515_firmware |
| dell | vostro_15_3515 |
| dell | vostro_14_3435_firmware |
| dell | vostro_14_3435 |
| dell | vostro_14_3425_firmware |
| dell | vostro_14_3425 |
| dell | inspiron_7415_2-in-1_firmware |
| dell | inspiron_7415_2-in-1 |
| dell | inspiron_7405_2-in-1_firmware |
| dell | inspiron_7405_2-in-1 |
| dell | inspiron_5515_firmware |
| dell | inspiron_5515 |
| dell | inspiron_5505_firmware |
| dell | inspiron_5505 |
| dell | inspiron_5415_firmware |
| dell | inspiron_5415 |
| dell | inspiron_5405_firmware |
| dell | inspiron_5405 |
| dell | inspiron_3505_firmware |
| dell | inspiron_3505 |
| dell | inspiron_24_5415_all-in-one_firmware |
| dell | inspiron_24_5415_all-in-one |
| dell | inspiron_16_7635_2-in-1_firmware |
| dell | inspiron_16_7635_2-in-1 |
| dell | inspiron_16_5635_firmware |
| dell | inspiron_16_5635 |
| dell | inspiron_16_5625_firmware |
| dell | inspiron_16_5625 |
| dell | inspiron_15_3535_firmware |
| dell | inspiron_15_3535 |
| dell | inspiron_15_3525_firmware |
| dell | inspiron_15_3525 |
| dell | inspiron_15_3515_firmware |
| dell | inspiron_15_3515 |
| dell | inspiron_14_7435_2-in-1_firmware |
| dell | inspiron_14_7435_2-in-1 |
| dell | inspiron_14_7425_2-in-1_firmware |
| dell | inspiron_14_7425_2-in-1 |
| dell | inspiron_14_5435_firmware |
| dell | inspiron_14_5435 |
| dell | inspiron_14_5425_firmware |
| dell | inspiron_14_5425 |
| dell | g5_5505_firmware |
| dell | g5_5505 |
| dell | g15_5535_firmware |
| dell | g15_5535 |
| dell | g15_5525_firmware |
| dell | g15_5525 |
| dell | g15_5515_firmware |
| dell | g15_5515 |
| dell | alienware_m18_firmware |
| dell | alienware_m18 |
| dell | alienware_m17_r5_amd_firmware |
| dell | alienware_m17_r5_amd |
| dell | alienware_m16_r1_amd_firmware |
| dell | alienware_m16_r1_amd |
| dell | alienware_m15_ryzen_edition_r5_firmware |
| dell | alienware_m15_ryzen_edition_r5 |
| dell | alienware_m15_r7_amd_firmware |
| dell | alienware_m15_r7_amd |
| dell | alienware_aurora_ryzen_edition_r14_firmware |
| dell | alienware_aurora_ryzen_edition_r14 |
| dell | alienware_aurora_r15_amd_firmware |
| dell | alienware_aurora_r15_amd |
| dell | alienware_aurora_r10_firmware |
| dell | alienware_aurora_r10 |
References
Frequently Asked Questions
What is CVE-2023-32475? +
How severe is CVE-2023-32475? +
What products are affected by CVE-2023-32475? +
How do I check if I'm vulnerable to CVE-2023-32475? +
Related Vulnerabilities
electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to 3.9.5, deterministic AES-192-CBC with a fixed zero IV, constant KDF salt, and …
Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR01 does not validate file attributes or the contents of /root during integrity …
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and …
pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whatever tarball it wants …
A missing file integrity check vulnerability exists on MacOS F5 VPN browser client installer that may allow a local, authenticated …
KeePassXC-Browser thru 1.9.9.2 autofills or prompts to fill stored credentials into documents rendered under a browser-enforced CSP directive and iframe …