Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-43088

Dell Client BIOS contains a pre-boot direct memory access (DMA) vulnerability. An authenticated attacker with physical access to the system may potentially exploit this vulnerability in order to execute arbitrary code on the device.

Published

2023-12-22T18:15:07.550

Last Modified

2024-11-21T08:23:42.107

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Secondary
CWE-16
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	dell	precision_7865_tower_firmware	< 1.5.0	Yes
Hardware	dell	precision_7865_tower	-	No

References

https://www.dell.com/support/kbdoc/en-us/000218223/dsa-2023-377 Vendor Advisory ([email protected])
https://www.dell.com/support/kbdoc/en-us/000218223/dsa-2023-377 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)