Article Number: 000218043
Medium
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2023-28075 | Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the system. | 6.9 | CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H |
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2023-28075 | Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code execution on the system. | 6.9 | CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H |
Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
---|---|---|---|---|
PowerEdge T30 | BIOS | Versions prior to 1.12.0 | Version 1.12.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
Product | Software/Firmware | Affected Versions | Remediated Versions | Link |
---|---|---|---|---|
PowerEdge T30 | BIOS | Versions prior to 1.12.0 | Version 1.12.0 or later | https://www.dell.com/support/home/product-support/product/poweredge-t30/drivers |
None
CVE-2023-28075: Dell Technologies would like to thank another1024 and RedAppleTest for reporting this issue.
Revision | Date | Description |
---|---|---|
1.0 | 09-26-2023 | Initial Release |
PowerEdge T30
27 Sep 2023
1
Dell Security Advisory