7.8 - CVE-2023-32460

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2023-32460	First vendor Publication	2023-12-08
Vendor	Cve	Last vendor Modification	2023-12-14

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score	7.8
Base Score	7.8	Environmental Score	7.8
impact SubScore	5.9	Temporal Score	7.8
Exploitabality Sub Score	1.8

Attack Vector	Local	Attack Complexity	Low
Privileges Required	Low	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score	N/A	Attack Range	N/A
Cvss Impact Score	N/A	Attack Complexity	N/A
Cvss Expoit Score	N/A	Authentication	N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Dell PowerEdge BIOS contains an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege escalation.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32460

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-306	Missing Authentication for Critical Function (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Os	Dell Dss 8440 Firmware cpe:2.3:o:dell:dss_8440_firmware::::::::	1
Os	Dell Emc Nx440 Firmware cpe:2.3:o:dell:emc_nx440_firmware::::::::	1
Os	Dell Emc Storage Nx3240 Firmware cpe:2.3:o:dell:emc_storage_nx3240_firmware::::::::	1
Os	Dell Emc Storage Nx3340 Firmware cpe:2.3:o:dell:emc_storage_nx3340_firmware::::::::	1
Os	Dell Emc Xc Core 6420 Firmware cpe:2.3:o:dell:emc_xc_core_6420_firmware::::::::	1
Os	Dell Emc Xc Core Xc450 Firmware cpe:2.3:o:dell:emc_xc_core_xc450_firmware::::::::	1
Os	Dell Emc Xc Core Xc640 Firmware cpe:2.3:o:dell:emc_xc_core_xc640_firmware::::::::	1
Os	Dell Emc Xc Core Xc650 Firmware cpe:2.3:o:dell:emc_xc_core_xc650_firmware::::::::	1
Os	Dell Emc Xc Core Xc6520 Firmware cpe:2.3:o:dell:emc_xc_core_xc6520_firmware::::::::	1
Os	Dell Emc Xc Core Xc740Xd Firmware cpe:2.3:o:dell:emc_xc_core_xc740xd_firmware::::::::	1
Os	Dell Emc Xc Core Xc740Xd2 Firmware cpe:2.3:o:dell:emc_xc_core_xc740xd2_firmware::::::::	1
Os	Dell Emc Xc Core Xc750 Firmware cpe:2.3:o:dell:emc_xc_core_xc750_firmware::::::::	1
Os	Dell Emc Xc Core Xc750Xa Firmware cpe:2.3:o:dell:emc_xc_core_xc750xa_firmware::::::::	1
Os	Dell Emc Xc Core Xc7525 Firmware cpe:2.3:o:dell:emc_xc_core_xc7525_firmware::::::::	1
Os	Dell Emc Xc Core Xc940 Firmware cpe:2.3:o:dell:emc_xc_core_xc940_firmware::::::::	1
Os	Dell Emc Xc Core Xcxr2 Firmware cpe:2.3:o:dell:emc_xc_core_xcxr2_firmware::::::::	1
Os	Dell Nx3230 Firmware cpe:2.3:o:dell:nx3230_firmware::::::::	1
Os	Dell Nx3330 Firmware cpe:2.3:o:dell:nx3330_firmware::::::::	1
Os	Dell Nx430 Firmware cpe:2.3:o:dell:nx430_firmware::::::::	1
Os	Dell Poweredge C4130 Firmware cpe:2.3:o:dell:poweredge_c4130_firmware::::::::	1
Os	Dell Poweredge C4140 Firmware cpe:2.3:o:dell:poweredge_c4140_firmware::::::::	1
Os	Dell Poweredge C6320 Firmware cpe:2.3:o:dell:poweredge_c6320_firmware::::::::	1
Os	Dell Poweredge C6420 Firmware cpe:2.3:o:dell:poweredge_c6420_firmware::::::::	1
Os	Dell Poweredge C6520 Firmware cpe:2.3:o:dell:poweredge_c6520_firmware::::::::	1
Os	Dell Poweredge C6525 Firmware cpe:2.3:o:dell:poweredge_c6525_firmware::::::::	1
Os	Dell Poweredge C6615 Firmware cpe:2.3:o:dell:poweredge_c6615_firmware::::::::	1
Os	Dell Poweredge C6620 Firmware cpe:2.3:o:dell:poweredge_c6620_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_c6620_firmware::::::::	2
Os	Dell Poweredge Fc430 Firmware cpe:2.3:o:dell:poweredge_fc430_firmware::::::::	1
Os	Dell Poweredge Fc630 Firmware cpe:2.3:o:dell:poweredge_fc630_firmware::::::::	1
Os	Dell Poweredge Fc640 Firmware cpe:2.3:o:dell:poweredge_fc640_firmware::::::::	1
Os	Dell Poweredge Fc830 Firmware cpe:2.3:o:dell:poweredge_fc830_firmware::::::::	1
Os	Dell Poweredge Hs5610 Firmware cpe:2.3:o:dell:poweredge_hs5610_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_hs5610_firmware::::::::	2
Os	Dell Poweredge Hs5620 Firmware cpe:2.3:o:dell:poweredge_hs5620_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_hs5620_firmware::::::::	2
Os	Dell Poweredge M630 (Pe Vrtx) Firmware cpe:2.3:o:dell:poweredge_m630_(pe_vrtx)_firmware::::::::	1
Os	Dell Poweredge M630 Firmware cpe:2.3:o:dell:poweredge_m630_firmware::::::::	1
Os	Dell Poweredge M640 (Pe Vrtx) Firmware cpe:2.3:o:dell:poweredge_m640_(pe_vrtx)_firmware::::::::	1
Os	Dell Poweredge M640 Firmware cpe:2.3:o:dell:poweredge_m640_firmware::::::::	1
Os	Dell Poweredge M830 (Pe Vrtx) Firmware cpe:2.3:o:dell:poweredge_m830_(pe_vrtx)_firmware::::::::	1
Os	Dell Poweredge M830 Firmware cpe:2.3:o:dell:poweredge_m830_firmware::::::::	1
Os	Dell Poweredge Mx740C Firmware cpe:2.3:o:dell:poweredge_mx740c_firmware::::::::	1
Os	Dell Poweredge Mx750C Firmware cpe:2.3:o:dell:poweredge_mx750c_firmware::::::::	1
Os	Dell Poweredge Mx760C Firmware cpe:2.3:o:dell:poweredge_mx760c_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_mx760c_firmware::::::::	2
Os	Dell Poweredge Mx840C Firmware cpe:2.3:o:dell:poweredge_mx840c_firmware::::::::	1
Os	Dell Poweredge R230 Firmware cpe:2.3:o:dell:poweredge_r230_firmware::::::::	1
Os	Dell Poweredge R240 Firmware cpe:2.3:o:dell:poweredge_r240_firmware::::::::	1
Os	Dell Poweredge R250 Firmware cpe:2.3:o:dell:poweredge_r250_firmware::::::::	1
Os	Dell Poweredge R330 Firmware cpe:2.3:o:dell:poweredge_r330_firmware::::::::	1
Os	Dell Poweredge R340 Firmware cpe:2.3:o:dell:poweredge_r340_firmware::::::::	1
Os	Dell Poweredge R350 Firmware cpe:2.3:o:dell:poweredge_r350_firmware::::::::	1
Os	Dell Poweredge R430 Firmware cpe:2.3:o:dell:poweredge_r430_firmware::::::::	1
Os	Dell Poweredge R440 Firmware cpe:2.3:o:dell:poweredge_r440_firmware::::::::	1
Os	Dell Poweredge R450 Firmware cpe:2.3:o:dell:poweredge_r450_firmware::::::::	1
Os	Dell Poweredge R530 Firmware cpe:2.3:o:dell:poweredge_r530_firmware::::::::	1
Os	Dell Poweredge R540 Firmware cpe:2.3:o:dell:poweredge_r540_firmware::::::::	1
Os	Dell Poweredge R550 Firmware cpe:2.3:o:dell:poweredge_r550_firmware::::::::	1
Os	Dell Poweredge R630 Firmware cpe:2.3:o:dell:poweredge_r630_firmware::::::::	1
Os	Dell Poweredge R640 Firmware cpe:2.3:o:dell:poweredge_r640_firmware::::::::	1
Os	Dell Poweredge R6415 Firmware cpe:2.3:o:dell:poweredge_r6415_firmware::::::::	1
Os	Dell Poweredge R650 Firmware cpe:2.3:o:dell:poweredge_r650_firmware::::::::	1
Os	Dell Poweredge R650Xs Firmware cpe:2.3:o:dell:poweredge_r650xs_firmware::::::::	1
Os	Dell Poweredge R6515 Firmware cpe:2.3:o:dell:poweredge_r6515_firmware::::::::	1
Os	Dell Poweredge R6525 Firmware cpe:2.3:o:dell:poweredge_r6525_firmware::::::::	1
Os	Dell Poweredge R660 Firmware cpe:2.3:o:dell:poweredge_r660_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r660_firmware::::::::	2
Os	Dell Poweredge R660Xs Firmware cpe:2.3:o:dell:poweredge_r660xs_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r660xs_firmware::::::::	2
Os	Dell Poweredge R6615 Firmware cpe:2.3:o:dell:poweredge_r6615_firmware::::::::	1
Os	Dell Poweredge R6625 Firmware cpe:2.3:o:dell:poweredge_r6625_firmware::::::::	1
Os	Dell Poweredge R730 Firmware cpe:2.3:o:dell:poweredge_r730_firmware::::::::	1
Os	Dell Poweredge R730Xd Firmware cpe:2.3:o:dell:poweredge_r730xd_firmware::::::::	1
Os	Dell Poweredge R740 Firmware cpe:2.3:o:dell:poweredge_r740_firmware::::::::	1
Os	Dell Poweredge R740Xd Firmware cpe:2.3:o:dell:poweredge_r740xd_firmware::::::::	1
Os	Dell Poweredge R740Xd2 Firmware cpe:2.3:o:dell:poweredge_r740xd2_firmware::::::::	1
Os	Dell Poweredge R7415 Firmware cpe:2.3:o:dell:poweredge_r7415_firmware::::::::	1
Os	Dell Poweredge R7425 Firmware cpe:2.3:o:dell:poweredge_r7425_firmware::::::::	1
Os	Dell Poweredge R750 Firmware cpe:2.3:o:dell:poweredge_r750_firmware::::::::	1
Os	Dell Poweredge R750Xa Firmware cpe:2.3:o:dell:poweredge_r750xa_firmware::::::::	1
Os	Dell Poweredge R750Xs Firmware cpe:2.3:o:dell:poweredge_r750xs_firmware::::::::	1
Os	Dell Poweredge R7515 Firmware cpe:2.3:o:dell:poweredge_r7515_firmware::::::::	1
Os	Dell Poweredge R7525 Firmware cpe:2.3:o:dell:poweredge_r7525_firmware::::::::	1
Os	Dell Poweredge R760 Firmware cpe:2.3:o:dell:poweredge_r760_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r760_firmware::::::::	2
Os	Dell Poweredge R760Xa Firmware cpe:2.3:o:dell:poweredge_r760xa_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r760xa_firmware::::::::	2
Os	Dell Poweredge R760Xd2 Firmware cpe:2.3:o:dell:poweredge_r760xd2_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r760xd2_firmware::::::::	2
Os	Dell Poweredge R760Xs Firmware cpe:2.3:o:dell:poweredge_r760xs_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r760xs_firmware::::::::	2
Os	Dell Poweredge R7615 Firmware cpe:2.3:o:dell:poweredge_r7615_firmware::::::::	1
Os	Dell Poweredge R7625 Firmware cpe:2.3:o:dell:poweredge_r7625_firmware::::::::	1
Os	Dell Poweredge R830 Firmware cpe:2.3:o:dell:poweredge_r830_firmware::::::::	1
Os	Dell Poweredge R840 Firmware cpe:2.3:o:dell:poweredge_r840_firmware::::::::	1
Os	Dell Poweredge R860 Firmware cpe:2.3:o:dell:poweredge_r860_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r860_firmware::::::::	2
Os	Dell Poweredge R930 Firmware cpe:2.3:o:dell:poweredge_r930_firmware::::::::	1
Os	Dell Poweredge R940 Firmware cpe:2.3:o:dell:poweredge_r940_firmware::::::::	1
Os	Dell Poweredge R940Xa Firmware cpe:2.3:o:dell:poweredge_r940xa_firmware::::::::	1
Os	Dell Poweredge R960 Firmware cpe:2.3:o:dell:poweredge_r960_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_r960_firmware::::::::	2
Os	Dell Poweredge T130 Firmware cpe:2.3:o:dell:poweredge_t130_firmware::::::::	1
Os	Dell Poweredge T140 Firmware cpe:2.3:o:dell:poweredge_t140_firmware::::::::	1
Os	Dell Poweredge T150 Firmware cpe:2.3:o:dell:poweredge_t150_firmware::::::::	1
Os	Dell Poweredge T330 Firmware cpe:2.3:o:dell:poweredge_t330_firmware::::::::	1
Os	Dell Poweredge T340 Firmware cpe:2.3:o:dell:poweredge_t340_firmware::::::::	1
Os	Dell Poweredge T350 Firmware cpe:2.3:o:dell:poweredge_t350_firmware::::::::	1
Os	Dell Poweredge T430 Firmware cpe:2.3:o:dell:poweredge_t430_firmware::::::::	1
Os	Dell Poweredge T440 Firmware cpe:2.3:o:dell:poweredge_t440_firmware::::::::	1
Os	Dell Poweredge T550 Firmware cpe:2.3:o:dell:poweredge_t550_firmware::::::::	1
Os	Dell Poweredge T560 Firmware cpe:2.3:o:dell:poweredge_t560_firmware:1.4.4:::::::* cpe:2.3:o:dell:poweredge_t560_firmware::::::::	2
Os	Dell Poweredge T630 Firmware cpe:2.3:o:dell:poweredge_t630_firmware::::::::	1
Os	Dell Poweredge T640 Firmware cpe:2.3:o:dell:poweredge_t640_firmware::::::::	1
Os	Dell Poweredge Xe2420 Firmware cpe:2.3:o:dell:poweredge_xe2420_firmware::::::::	1
Os	Dell Poweredge Xe7420 Firmware cpe:2.3:o:dell:poweredge_xe7420_firmware::::::::	1
Os	Dell Poweredge Xe7440 Firmware cpe:2.3:o:dell:poweredge_xe7440_firmware::::::::	1
Os	Dell Poweredge Xe8545 Firmware cpe:2.3:o:dell:poweredge_xe8545_firmware::::::::	1
Os	Dell Poweredge Xe8640 Firmware cpe:2.3:o:dell:poweredge_xe8640_firmware::::::::	1
Os	Dell Poweredge Xe9640 Firmware cpe:2.3:o:dell:poweredge_xe9640_firmware::::::::	1
Os	Dell Poweredge Xe9680 Firmware cpe:2.3:o:dell:poweredge_xe9680_firmware::::::::	1
Os	Dell Poweredge Xr11 Firmware cpe:2.3:o:dell:poweredge_xr11_firmware::::::::	1
Os	Dell Poweredge Xr12 Firmware cpe:2.3:o:dell:poweredge_xr12_firmware::::::::	1
Os	Dell Poweredge Xr2 Firmware cpe:2.3:o:dell:poweredge_xr2_firmware::::::::	1
Os	Dell Poweredge Xr4510C Firmware cpe:2.3:o:dell:poweredge_xr4510c_firmware::::::::	1
Os	Dell Poweredge Xr4520C Firmware cpe:2.3:o:dell:poweredge_xr4520c_firmware:1.10.4:::::::* cpe:2.3:o:dell:poweredge_xr4520c_firmware::::::::	2
Os	Dell Poweredge Xr5610 Firmware cpe:2.3:o:dell:poweredge_xr5610_firmware::::::::	1
Os	Dell Poweredge Xr7620 Firmware cpe:2.3:o:dell:poweredge_xr7620_firmware::::::::	1
Os	Dell Poweredge Xr8610T Firmware cpe:2.3:o:dell:poweredge_xr8610t_firmware::::::::	1
Os	Dell Poweredge Xr8620T Firmware cpe:2.3:o:dell:poweredge_xr8620t_firmware::::::::	1
Os	Dell Xc Core Xc660 Firmware cpe:2.3:o:dell:xc_core_xc660_firmware::::::::	1
Os	Dell Xc Core Xc760 Firmware cpe:2.3:o:dell:xc_core_xc760_firmware::::::::	1
Os	Dell Xc430 Hyperconverged Appliance Firmware cpe:2.3:o:dell:xc430_hyperconverged_appliance_firmware::::::::	1
Os	Dell Xc630 Hyperconverged Appliance Firmware cpe:2.3:o:dell:xc630_hyperconverged_appliance_firmware::::::::	1
Os	Dell Xc6320 Hyperconverged Appliance Firmware cpe:2.3:o:dell:xc6320_hyperconverged_appliance_firmware::::::::	1
Os	Dell Xc730 Hyperconverged Appliance Firmware cpe:2.3:o:dell:xc730_hyperconverged_appliance_firmware::::::::	1
Os	Dell Xc730Xd Hyperconverged Appliance Firmware cpe:2.3:o:dell:xc730xd_hyperconverged_appliance_firmware::::::::	1

OpenVAS Exploits

Date	Description
2010-04-21	Name : FreeBSD Ports: curl File : nvt/freebsd_curl3.nasl
2010-04-06	Name : Debian Security Advisory DSA 2023-1 (curl) File : nvt/deb_2023_1.nasl

Nessus® Vulnerability Scanner

Date	Description
2010-04-20	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_c8c31c4149ed11df83fb0015587e2cc1.nasl - Type : ACT_GATHER_INFO
2010-03-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2023.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

https://www.dell.com/support/kbdoc/en-us/000219550/dsa-2023-361-security-upda...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2023-12-14 17:27:25	Multiple Updates
2023-12-09 02:38:19	Multiple Updates
2023-12-09 02:34:44	Multiple Updates
2023-12-08 17:27:23	Multiple Updates
2023-12-08 13:27:23	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	140
Sources(s)	1
Openvas Exploit(s)	2
Nessus® Exploit(s)	2

	Related
6.8	DSA-2023
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)