CVE-2023-48674

Medium

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could…

dell·CWE-170·Published 2024-03-01

CVSS

4.9

EPSS

0.00

KEV

Exploits

Vendor statements (1)

dell.com

cve.orgen

233 chars

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

NVDes

246 chars

Dell Platform BIOS contiene una vulnerabilidad de terminación nula incorrecta. Un usuario con privilegios elevados y acceso a la red del sistema podría enviar datos maliciosos al dispositivo para provocar que algunos servicios dejen de funcionar.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	6.8	—	—	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
3.1	Primary	NVD	4.9	1.2	3.6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
3.1	Secondary	NVD	6.8	2.3	4.0	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H