CVE-2023-28063
high-risk
Published 2024-02-06
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.
Do I need to act?
-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.7/10
Medium
LOCAL
/ LOW complexity
Affected Products (20)
Optiplex 3000 Micro Firmware
Optiplex 3000 Small Form Factor Firmware
Optiplex 3000 Tower Firmware
Optiplex 5000 Micro Firmware
Optiplex 5000 Small Form Factor Firmware
Optiplex 5000 Tower Firmware
Optiplex 7000 Micro Firmware
Optiplex 7000 Small Form Factor Firmware
Optiplex 7000 Tower Firmware
Optiplex 7000 Xe Micro Firmware
Optiplex 5090 Micro Firmware
Optiplex 5090 Small Form Factor Firmware
Optiplex 5090 Tower Firmware
Optiplex Micro 7010 Firmware
Optiplex Micro Plus 7010 Firmware
Optiplex Small Form Factor 7010 Firmware
Optiplex Tower 7010 Firmware
Optiplex Xe4 Firmware
Affected Vendors
References (2)
54
/ 100
high-risk
Severity
21/34 · High
Exploitability
0/34 · Minimal
Exposure
33/34 · Critical