Vulnerabilities > CVE-2023-28064 - Out-of-bounds Write vulnerability in Dell products

CVSS 4.6 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

dell

CWE-787

NVD

Published: 2023-06-23

Updated: 2023-06-30

Summary

Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

Vulnerable Configurations

Part	Description	Count
OS	Dell Dell Alienware M15 R6 Firmware - Dell Alienware M15 R6 Firmware 1.6.0 Dell Alienware M15 R6 Firmware 1.8.0 Dell Alienware M15 R6 Firmware 1.17.0 Dell Alienware M15 R7 Firmware - Dell Alienware M15 R7 Firmware 1.10.0 Dell Chengming 3900 Firmware - Dell Chengming 3900 Firmware 1.7.3 Dell Chengming 3901 Firmware * Dell G15 5510 Firmware - Dell G15 5510 Firmware 1.8.0 Dell G15 5510 Firmware 1.16.0 Dell G15 5511 Firmware - Dell G15 5511 Firmware 1.9.0 Dell G15 5511 Firmware 1.18.0 Dell G15 5520 Firmware - Dell G15 5520 Firmware 1.10.0 Dell Inspiron 14 5418 Firmware - Dell Inspiron 14 5418 Firmware 2.6.1 Dell Inspiron 14 5410 Firmware - Dell Inspiron 14 5410 Firmware 2.6.1 Dell Inspiron 14 Plus 7420 Firmware - Dell Inspiron 14 Plus 7420 Firmware 1.6.1 Dell Inspiron 14 Plus 7420 Firmware 1.8.0 Dell Inspiron 15 3511 Firmware - Dell Inspiron 15 3511 Firmware 1.18.2 Dell Inspiron 15 5510 Firmware - Dell Inspiron 15 5510 Firmware 2.6.1 Dell Inspiron 15 5518 Firmware - Dell Inspiron 15 5518 Firmware 2.6.1 Dell Inspiron 16 7620 2 IN 1 Firmware * Dell Inspiron 16 Plus 7620 Firmware - Dell Inspiron 16 Plus 7620 Firmware 1.6.1 Dell Inspiron 16 Plus 7620 Firmware 1.8.0 Dell Inspiron 3511 Firmware - Dell Inspiron 3511 Firmware 1.8.0 Dell Inspiron 3511 Firmware 1.18.2 Dell Inspiron 3511 Firmware 1.19.0 Dell Inspiron 3520 Firmware - Dell Inspiron 3520 Firmware 1.8.2 Dell Inspiron 3520 Firmware 1.9.0 Dell Inspiron 3891 Firmware - Dell Inspiron 3891 Firmware 1.4.1 Dell Inspiron 3891 Firmware 1.12.0 Dell Inspiron 3910 Firmware - Dell Inspiron 3910 Firmware 1.7.3 Dell Inspiron 5310 Firmware - Dell Inspiron 5310 Firmware 2.6.1 Dell Inspiron 5310 Firmware 2.15.0 Dell Inspiron 5310 Firmware 2.17.0 Dell Inspiron 5320 Firmware - Dell Inspiron 5320 Firmware 1.3.0 Dell Inspiron 5320 Firmware 1.7.0 Dell Inspiron 5410 Firmware - Dell Inspiron 5410 Firmware 2.16.0 Dell Inspiron 5420 Firmware - Dell Inspiron 5420 Firmware 1.6.0 Dell Inspiron 5420 Firmware 1.10.0 Dell Inspiron 5620 Firmware - Dell Inspiron 5620 Firmware 1.6.0 Dell Inspiron 5620 Firmware 1.10.0 Dell Inspiron 7420 Firmware - Dell Inspiron 7420 Firmware 1.4.0 Dell Inspiron 7420 Firmware 1.8.0 Dell Inspiron 7510 Firmware - Dell Inspiron 7510 Firmware 1.12.0 Dell Inspiron 7510 Firmware 1.14.0 Dell Inspiron 7610 Firmware - Dell Inspiron 7610 Firmware 1.12.0 Dell Inspiron 7610 Firmware 1.14.0 Dell Latitude 3120 Firmware * Dell Latitude 3320 Firmware - Dell Latitude 3320 Firmware 1.18.2 Dell Latitude 3320 Firmware 1.19.0 Dell Latitude 3330 Firmware - Dell Latitude 3330 Firmware 1.8.0 Dell Latitude 3330 Firmware 1.10.0 Dell Latitude 3420 Firmware - Dell Latitude 3420 Firmware 1.23.2 Dell Latitude 3420 Firmware 1.25.1 Dell Latitude 3430 Firmware - Dell Latitude 3430 Firmware 1.4.0 Dell Latitude 3430 Firmware 1.7.0 Dell Latitude 3520 Firmware - Dell Latitude 3520 Firmware 1.23.2 Dell Latitude 3520 Firmware 1.25.1 Dell Latitude 3530 Firmware - Dell Latitude 3530 Firmware 1.4.0 Dell Latitude 3530 Firmware 1.7.0 Dell Latitude 5320 Firmware - Dell Latitude 5320 Firmware 1.24.3 Dell Latitude 5330 Firmware - Dell Latitude 5330 Firmware 1.5.0 Dell Latitude 5330 Firmware 1.8.0 Dell Latitude 5520 Firmware 1.25.1 Dell Latitude 5530 Firmware - Dell Latitude 5530 Firmware 1.5.0 Dell Latitude 5530 Firmware 1.8.2 Dell Latitude 5531 Firmware - Dell Latitude 5531 Firmware 1.6.0 Dell Latitude 5531 Firmware 1.9.0 Dell Latitude 7330 Firmware - Dell Latitude 7330 Firmware 1.6.0 Dell Latitude 7330 Firmware 1.10.0 Dell Latitude 7430 Firmware - Dell Latitude 7430 Firmware 1.6.0 Dell Latitude 7430 Firmware 1.10.0 Dell Latitude 7530 Firmware - Dell Latitude 7530 Firmware 1.6.0 Dell Latitude 7530 Firmware 1.10.0 Dell Latitude Rugged 5430 Firmware - Dell Latitude Rugged 5430 Firmware 1.12.0 Dell Latitude Rugged 7330 Firmware - Dell Latitude Rugged 7330 Firmware 1.12.0 Dell Latitude Rugged 7330 Firmware 1.14.0 Dell Optiplex 3000 Firmware - Dell Optiplex 3000 Firmware 1.4.1 Dell Optiplex 5000 Firmware - Dell Optiplex 5000 Firmware 1.4.1 Dell Optiplex 5400 Firmware - Dell Optiplex 5400 Firmware 1.1.15 Dell Optiplex 7000 Firmware - Dell Optiplex 7000 Firmware 1.4.1 Dell Optiplex 7000 OEM Firmware * Dell Optiplex 7400 Firmware - Dell Optiplex 7400 Firmware 1.1.15 Dell Optiplex 7410 ALL IN ONE Firmware * Dell Precision 3560 Firmware - Dell Precision 3560 Firmware 1.24.3 Dell Precision 3560 Firmware 1.25.1 Dell Precision 3570 Firmware - Dell Precision 3570 Firmware 1.5.0 Dell Precision 3570 Firmware 1.8.2 Dell Precision 3571 Firmware - Dell Precision 3571 Firmware 1.6.0 Dell Precision 3571 Firmware 1.9.0 Dell Precision 5760 Firmware - Dell Precision 5760 Firmware 1.15.2 Dell Precision 5760 Firmware 1.16.1 Dell Precision 5770 Firmware - Dell Precision 5770 Firmware 1.9.0 Dell Precision 5770 Firmware 1.13.1 Dell Vostro 3420 Firmware - Dell Vostro 3420 Firmware 1.8.2 Dell Vostro 3420 Firmware 1.9.0 Dell Vostro 3510 Firmware - Dell Vostro 3510 Firmware 1.18.2 Dell Vostro 3510 Firmware 1.19.0 Dell Vostro 3520 Firmware - Dell Vostro 3520 Firmware 1.8.2 Dell Vostro 3520 Firmware 1.9.0 Dell Vostro 3910 Firmware - Dell Vostro 3910 Firmware 1.7.3 Dell Vostro 5310 Firmware - Dell Vostro 5310 Firmware 2.15.0 Dell Vostro 5310 Firmware 2.17.0 Dell Vostro 5320 Firmware 1.7.0 Dell Vostro 5410 Firmware - Dell Vostro 5410 Firmware 2.15.2 Dell Vostro 5410 Firmware 2.16.0 Dell Vostro 5510 Firmware - Dell Vostro 5510 Firmware 2.15.2 Dell Vostro 5510 Firmware 2.16.0 Dell Vostro 5620 Firmware - Dell Vostro 5620 Firmware 1.6.0 Dell Vostro 5620 Firmware 1.10.0 Dell Vostro 7510 Firmware - Dell Vostro 7510 Firmware 1.12.0 Dell Vostro 7510 Firmware 1.14.0 Dell Vostro 7620 Firmware 1.8.0 Dell XPS 13 9315 2 IN 1 Firmware - Dell XPS 13 9315 2 IN 1 Firmware 1.4.0 Dell XPS 17 9710 Firmware - Dell XPS 17 9710 Firmware 1.15.2 Dell XPS 17 9710 Firmware 1.16.1 Dell XPS 17 9720 Firmware - Dell XPS 17 9720 Firmware 1.9.0 Dell XPS 17 9720 Firmware 1.13.1	178
Hardware	Dell Dell Alienware M15 R6 - Dell Alienware M15 R7 - Dell Chengming 3900 - Dell Chengming 3901 - Dell G15 5510 - Dell G15 5511 - Dell G15 5520 - Dell Inspiron 14 5418 - Dell Inspiron 14 5410 - Dell Inspiron 14 Plus 7420 - Dell Inspiron 15 3511 - Dell Inspiron 15 5510 - Dell Inspiron 15 5518 - Dell Inspiron 16 7620 2 IN 1 - Dell Inspiron 16 Plus 7620 - Dell Inspiron 3511 - Dell Inspiron 3520 - Dell Inspiron 3891 - Dell Inspiron 3910 - Dell Inspiron 5310 - Dell Inspiron 5320 - Dell Inspiron 5410 - Dell Inspiron 5420 - Dell Inspiron 5620 - Dell Inspiron 7420 - Dell Inspiron 7510 - Dell Inspiron 7610 - Dell Latitude 3120 - Dell Latitude 3320 - Dell Latitude 3330 - Dell Latitude 3420 - Dell Latitude 3430 - Dell Latitude 3520 - Dell Latitude 3530 - Dell Latitude 5320 - Dell Latitude 5330 - Dell Latitude 5520 - Dell Latitude 5530 - Dell Latitude 5531 - Dell Latitude 7330 - Dell Latitude 7430 - Dell Latitude 7530 - Dell Latitude Rugged 5430 - Dell Latitude Rugged 7330 - Dell Optiplex 3000 - Dell Optiplex 5000 - Dell Optiplex 5400 - Dell Optiplex 7000 - Dell Optiplex 7000 OEM - Dell Optiplex 7400 - Dell Optiplex 7410 ALL IN ONE - Dell Precision 3560 - Dell Precision 3570 - Dell Precision 3571 - Dell Precision 5760 - Dell Precision 5770 - Dell Vostro 3420 - Dell Vostro 3510 - Dell Vostro 3520 - Dell Vostro 3910 - Dell Vostro 5310 - Dell Vostro 5320 - Dell Vostro 5410 - Dell Vostro 5510 - Dell Vostro 5620 - Dell Vostro 7510 - Dell Vostro 7620 - Dell XPS 13 9315 2 IN 1 - Dell XPS 17 9710 - Dell XPS 17 9720 -	70

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.dell.com/support/kbdoc/en-us/000214778/dsa-2023-174-dell-client-bios-security-update-for-an-out-of-bounds-write-vulnerability