Improper Authentication Vulnerability in Dell BIOS
CVE-2023-28073

8.2HIGH

Key Information:

Vendor: Dell
Status: Cpg BiOS
Vendor: CVE Published:; 23 June 2023

Summary

Dell BIOS has a vulnerability that allows a malicious user with local authentication to bypass certain authentication mechanisms. This potential exploit can enable unauthorized privilege escalation, compromising the system's integrity and security. Users are encouraged to review the advisory for more information and recommended mitigations.

Affected Version(s)

CPG BIOS Latitude 5530 1.13.2

References

https://www.dell.com/support/kbdoc/en-us/000213032/dsa-20...

vendor-advisory

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jun 23, 2023
Vulnerability Reserved
Mar 10, 2023