Search Results | AttackerKB

Show filters

Topics 50 Users 9,754

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

50 Total Results

Displaying 1-10 of 50

Attacker Value

Unknown

CVE-2021-36323

Disclosure Date: November 01, 2021 (last updated February 23, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Attack Vector: Local Privileges: High User Interaction: None

1

Attacker Value

Unknown

CVE-2024-8105

Disclosure Date: August 26, 2024 (last updated August 27, 2024)

A vulnerability related to the use an insecure Platform Key (PK) has been discovered. An attacker with the compromised PK private key can create malicious UEFI software that is signed with a trusted key that has been compromised.

0

Attacker Value

Unknown

CVE-2023-28060

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28058

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28050

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28044

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28036

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28034

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28031

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2023-28027

Disclosure Date: June 23, 2023 (last updated February 25, 2025)

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Attack Vector: Local Privileges: High User Interaction: None

0