DSA-2023-220: Security Update for an AMI UEFI BIOS Vulnerability
Summary: Dell Client Platform remediation is available for an AMI UEFI BIOS vulnerability that could be exploited by malicious users to compromise the affected system.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Impact
High
Details
| Third-Party Component | CVE(s) | More information |
|---|---|---|
| AMI UEFI BIOS | CVE-2023-39535 | See NVD (http://nvd.nist.gov/ ) for individual scores for each CVE.AMI-SA-2023008 |
Affected Products & Remediation
| Product | Software/ Firmware | Affected Versions | Remediated Version | Release Date (MM-DD-YYY) | Link |
|---|---|---|---|---|---|
| Inspiron 3482 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3510 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3782 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 15 3521 | BIOS | Versions prior to 1.12.0 | 1.12.0 or later | 08/07/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3502 | BIOS | Versions prior to 1.14.0 | 1.14.0 or later | 08/09/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3510 | BIOS | Versions prior to 1.17.0 | 1.17.0 or later | 08/11/2023 | Go to the Drivers & Downloads site for updates |
| Latitude 3190 | BIOS | Versions prior to 1.28.0 | 1.28.0 or later | 07/31/2023 | Go to the Drivers & Downloads site for updates |
| Latitude 3190 2-in-1 | BIOS | Versions prior to 1.28.0 | 1.28.0 or later | 07/31/2023 | Go to the Drivers & Downloads site for updates |
| Vostro 3582 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Wyse 5070 | BIOS | Versions prior to 1.24.0 | 1.24.0 or later | 08/09/2023 | Go to the Drivers & Downloads site for updates |
| Product | Software/ Firmware | Affected Versions | Remediated Version | Release Date (MM-DD-YYY) | Link |
|---|---|---|---|---|---|
| Inspiron 3482 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3510 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3782 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 15 3521 | BIOS | Versions prior to 1.12.0 | 1.12.0 or later | 08/07/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3502 | BIOS | Versions prior to 1.14.0 | 1.14.0 or later | 08/09/2023 | Go to the Drivers & Downloads site for updates |
| Inspiron 3510 | BIOS | Versions prior to 1.17.0 | 1.17.0 or later | 08/11/2023 | Go to the Drivers & Downloads site for updates |
| Latitude 3190 | BIOS | Versions prior to 1.28.0 | 1.28.0 or later | 07/31/2023 | Go to the Drivers & Downloads site for updates |
| Latitude 3190 2-in-1 | BIOS | Versions prior to 1.28.0 | 1.28.0 or later | 07/31/2023 | Go to the Drivers & Downloads site for updates |
| Vostro 3582 | BIOS | Versions prior to 1.20.0 | 1.20.0 or later | 09/12/2023 | Go to the Drivers & Downloads site for updates |
| Wyse 5070 | BIOS | Versions prior to 1.24.0 | 1.24.0 or later | 08/09/2023 | Go to the Drivers & Downloads site for updates |
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2023-11-14 | Initial Release |
Acknowledgements
Dell would like to thank Fangtao Cao from Wuhan University for reporting this issue.
Related Information
Legal Disclaimer
Affected Products
Inspiron 3482, Inspiron 3502, Inspiron 15 3510, Inspiron 15 3521, Inspiron 3782, Latitude 3190 2-in-1, Latitude 3190, Vostro 3582, Wyse 5070 Thin ClientArticle Properties
Article Number: 000216238
Article Type: Dell Security Advisory
Last Modified: 15 Nov 2023
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.