CVE & CISA-KEV Catalog

CVE-2023-48674

MEDIUM
6.8
CVSS v3
NVD

Description

Dell Platform BIOS contains an Improper Null Termination vulnerability. A high privilege user with network access to the system could potentially send malicious data to the device in order to cause some services to cease to function.

How to fix

Remediation Available
latitude 5280 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 5288 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 5290 2-in-1 firmwareNVD
Affected:< 1.32.0Fixed in:1.32.0CVE-2023-48674derived from NVD
latitude 5290 firmwareNVD
Affected:< 1.33.0Fixed in:1.33.0CVE-2023-48674derived from NVD
latitude 5300 2-in-1 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 5300 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 5310 2-in-1 firmwareNVD
Affected:< 1.22.0Fixed in:1.22.0CVE-2023-48674derived from NVD
latitude 5310 firmwareNVD
Affected:< 1.22.0Fixed in:1.22.0CVE-2023-48674derived from NVD
latitude 5320 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
latitude 5330 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
latitude 5340 firmwareNVD
Affected:< 1.10.1Fixed in:1.10.1CVE-2023-48674derived from NVD
latitude 5400 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
latitude 5401 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 5410 firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
latitude 5411 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
latitude 5420 firmwareNVD
Affected:< 1.36.2Fixed in:1.36.2CVE-2023-48674derived from NVD
latitude 5420 rugged firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
latitude 5421 firmwareNVD
Affected:< 1.27.1Fixed in:1.27.1CVE-2023-48674derived from NVD
latitude 5424 rugged firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
latitude 5430 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
latitude 5430 rugged laptop firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
latitude 5431 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
latitude 5440 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
latitude 5480 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 5488 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 5490 firmwareNVD
Affected:< 1.33.0Fixed in:1.33.0CVE-2023-48674derived from NVD
latitude 5491 firmwareNVD
Affected:< 1.31.0Fixed in:1.31.0CVE-2023-48674derived from NVD
latitude 5500 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
latitude 5501 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 5510 firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
latitude 5511 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
latitude 5520 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
latitude 5521 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
latitude 5530 firmwareNVD
Affected:< 1.21.1Fixed in:1.21.1CVE-2023-48674derived from NVD
latitude 5531 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
latitude 5540 firmwareNVD
Affected:< 1.10.1Fixed in:1.10.1CVE-2023-48674derived from NVD
latitude 5580 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 5590 firmwareNVD
Affected:< 1.33.0Fixed in:1.33.0CVE-2023-48674derived from NVD
latitude 5591 firmwareNVD
Affected:< 1.31.0Fixed in:1.31.0CVE-2023-48674derived from NVD
latitude 7200 2-in-1 firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
latitude 7210 2-in-1 firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
latitude 7212 rugged extreme tablet firmwareNVD
Affected:< 1.48.0Fixed in:1.48.0CVE-2023-48674derived from NVD
latitude 7220 rugged extreme firmwareNVD
Affected:< 1.34.1Fixed in:1.34.1CVE-2023-48674derived from NVD
latitude 7230 rugged extreme firmwareNVD
Affected:< 1.12.0Fixed in:1.12.0CVE-2023-48674derived from NVD
latitude 7280 firmwareNVD
Affected:< 1.35.0Fixed in:1.35.0CVE-2023-48674derived from NVD
latitude 7285 2-in-1 firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
latitude 7290 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
latitude 7300 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 7310 firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
latitude 7320 detachable firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
latitude 7320 firmwareNVD
Affected:< 1.34.2Fixed in:1.34.2CVE-2023-48674derived from NVD
latitude 7330 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
latitude 7330 rugged laptop firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
latitude 7340 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
latitude 7380 firmwareNVD
Affected:< 1.35.0Fixed in:1.35.0CVE-2023-48674derived from NVD
latitude 7390 2-in-1 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
latitude 7390 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
latitude 7400 2-in-1 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
latitude 7400 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
latitude 7410 firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
latitude 7420 firmwareNVD
Affected:< 1.34.2Fixed in:1.34.2CVE-2023-48674derived from NVD
latitude 7424 rugged extreme firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
latitude 7430 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
latitude 7440 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
latitude 7480 firmwareNVD
Affected:< 1.35.0Fixed in:1.35.0CVE-2023-48674derived from NVD
latitude 7490 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
latitude 7520 firmwareNVD
Affected:< 1.34.2Fixed in:1.34.2CVE-2023-48674derived from NVD
latitude 7530 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
latitude 7640 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
latitude 9330 firmwareNVD
Affected:< 1.17.0Fixed in:1.17.0CVE-2023-48674derived from NVD
latitude 9410 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
latitude 9420 firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
latitude 9430 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
latitude 9440 2-in-1 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2023-48674derived from NVD
latitude 9510 2in1 firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
latitude 9520 firmwareNVD
Affected:< 1.30.1Fixed in:1.30.1CVE-2023-48674derived from NVD
latitude rugged 7220ex firmwareNVD
Affected:< 1.34.1Fixed in:1.34.1CVE-2023-48674derived from NVD
optiplex 7000 micro firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
optiplex 7000 small form factor firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
optiplex 7000 tower firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
optiplex 7000 xe micro firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
optiplex 7060 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
optiplex 7070 firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
optiplex 7070 ultra firmwareNVD
Affected:< 1.23.0Fixed in:1.23.0CVE-2023-48674derived from NVD
optiplex 7071 firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
optiplex 7080 firmwareNVD
Affected:< 1.24.1Fixed in:1.24.1CVE-2023-48674derived from NVD
optiplex 7090 tower firmwareNVD
Affected:< 1.22.2Fixed in:1.22.2CVE-2023-48674derived from NVD
optiplex 7090 ultra firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
optiplex 7400 all-in-one firmwareNVD
Affected:< 1.1.37Fixed in:1.1.37CVE-2023-48674derived from NVD
optiplex 7450 all-in-one firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
optiplex 7460 all in one firmwareNVD
Affected:< 1.31.0Fixed in:1.31.0CVE-2023-48674derived from NVD
optiplex 7470 all-in-one firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
optiplex 7480 all-in-one firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
optiplex 7490 all-in-one firmwareNVD
Affected:< 1.27.1Fixed in:1.27.1CVE-2023-48674derived from NVD
optiplex 7760 all-in-one firmwareNVD
Affected:< 1.31.0Fixed in:1.31.0CVE-2023-48674derived from NVD
optiplex 7770 all-in-one firmwareNVD
Affected:< 1.27.0Fixed in:1.27.0CVE-2023-48674derived from NVD
optiplex 7780 all-in-one firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
optiplex all-in-one 7410 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex micro 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex micro plus 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex small form factor 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex small form factor plus 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex tower 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex tower plus 7010 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
optiplex xe3 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
optiplex xe4 tower firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
precision 3240 compact firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
precision 3260 compact firmwareNVD
Affected:< 3.3.2Fixed in:3.3.2CVE-2023-48674derived from NVD
precision 3260 xe compact firmwareNVD
Affected:< 3.3.2Fixed in:3.3.2CVE-2023-48674derived from NVD
precision 3420 tower firmwareNVD
Affected:< 2.28.0Fixed in:2.28.0CVE-2023-48674derived from NVD
precision 3430 tower firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 3431 tower firmwareNVD
Affected:< 1.24.0Fixed in:1.24.0CVE-2023-48674derived from NVD
precision 3440 firmwareNVD
Affected:< 1.24.1Fixed in:1.24.1CVE-2023-48674derived from NVD
precision 3450 firmwareNVD
Affected:< 1.22.1Fixed in:1.22.1CVE-2023-48674derived from NVD
precision 3460 small form factor firmwareNVD
Affected:< 3.3.2Fixed in:3.3.2CVE-2023-48674derived from NVD
precision 3460 xe small form factor firmwareNVD
Affected:< 3.3.2Fixed in:3.3.2CVE-2023-48674derived from NVD
precision 3470 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
precision 3480 firmwareNVD
Affected:< 1.11.0Fixed in:1.11.0CVE-2023-48674derived from NVD
precision 3520 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
precision 3530 firmwareNVD
Affected:< 1.31.0Fixed in:1.31.0CVE-2023-48674derived from NVD
precision 3540 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 3541 firmwareNVD
Affected:< 1.29.0Fixed in:1.29.0CVE-2023-48674derived from NVD
precision 3550 firmwareNVD
Affected:< 1.25.0Fixed in:1.25.0CVE-2023-48674derived from NVD
precision 3551 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
precision 3560 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
precision 3561 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 3570 firmwareNVD
Affected:< 1.21.1Fixed in:1.21.1CVE-2023-48674derived from NVD
precision 3571 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
precision 3580 firmwareNVD
Affected:< 1.10.1Fixed in:1.10.1CVE-2023-48674derived from NVD
precision 3581 firmwareNVD
Affected:< 1.10.1Fixed in:1.10.1CVE-2023-48674derived from NVD
precision 3620 tower firmwareNVD
Affected:< 2.28.0Fixed in:2.28.0CVE-2023-48674derived from NVD
precision 3630 tower firmwareNVD
Affected:< 2.26.0Fixed in:2.26.0CVE-2023-48674derived from NVD
precision 3640 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 3650 tower firmwareNVD
Affected:< 1.28.1Fixed in:1.28.1CVE-2023-48674derived from NVD
precision 3660 firmwareNVD
Affected:< 2.11.1Fixed in:2.11.1CVE-2023-48674derived from NVD
precision 3930 rack firmwareNVD
Affected:< 2.29.0Fixed in:2.29.0CVE-2023-48674derived from NVD
precision 5470 firmwareNVD
Affected:< 1.19.0Fixed in:1.19.0CVE-2023-48674derived from NVD
precision 5480 firmwareNVD
Affected:< 1.8.0Fixed in:1.8.0CVE-2023-48674derived from NVD
precision 5520 firmwareNVD
Affected:< 1.36.0Fixed in:1.36.0CVE-2023-48674derived from NVD
precision 5530 2-in-1 firmwareNVD
Affected:< 1.29.8Fixed in:1.29.8CVE-2023-48674derived from NVD
precision 5530 firmwareNVD
Affected:< 1.35.0Fixed in:1.35.0CVE-2023-48674derived from NVD
precision 5540 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
precision 5550 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
precision 5560 firmwareNVD
Affected:< 1.26.0Fixed in:1.26.0CVE-2023-48674derived from NVD
precision 5570 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
precision 5680 firmwareNVD
Affected:< 1.10.0Fixed in:1.10.0CVE-2023-48674derived from NVD
precision 5720 aio firmwareNVD
Affected:< 2.23.0Fixed in:2.23.0CVE-2023-48674derived from NVD
precision 5750 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 5760 firmwareNVD
Affected:< 1.25.1Fixed in:1.25.1CVE-2023-48674derived from NVD
precision 5770 firmwareNVD
Affected:< 1.22.0Fixed in:1.22.0CVE-2023-48674derived from NVD
precision 5820 tower firmwareNVD
Affected:< 2.34.0Fixed in:2.34.0CVE-2023-48674derived from NVD
precision 7520 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
precision 7530 firmwareNVD
Affected:< 1.32.0Fixed in:1.32.0CVE-2023-48674derived from NVD
precision 7540 firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
precision 7550 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 7560 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 7670 firmwareNVD
Affected:< 1.20.1Fixed in:1.20.1CVE-2023-48674derived from NVD
precision 7680 firmwareNVD
Affected:< 1.9.0Fixed in:1.9.0CVE-2023-48674derived from NVD
precision 7720 firmwareNVD
Affected:< 1.34.0Fixed in:1.34.0CVE-2023-48674derived from NVD
precision 7730 firmwareNVD
Affected:< 1.32.0Fixed in:1.32.0CVE-2023-48674derived from NVD
precision 7740 firmwareNVD
Affected:< 1.30.0Fixed in:1.30.0CVE-2023-48674derived from NVD
precision 7750 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 7760 firmwareNVD
Affected:< 1.28.0Fixed in:1.28.0CVE-2023-48674derived from NVD
precision 7770 firmwareNVD
Affected:< 1.20.1Fixed in:1.20.1CVE-2023-48674derived from NVD
precision 7780 firmwareNVD
Affected:< 1.9.0Fixed in:1.9.0CVE-2023-48674derived from NVD
precision 7820 tower firmwareNVD
Affected:< 2.38.0Fixed in:2.38.0CVE-2023-48674derived from NVD
precision 7920 tower firmwareNVD
Affected:< 2.38.0Fixed in:2.38.0CVE-2023-48674derived from NVD
xps 13 9310 2-in-1 firmwareNVD
Affected:< 2.22.0Fixed in:2.22.0CVE-2023-48674derived from NVD
xps 13 9310 firmwareNVD
Affected:< 3.20.0Fixed in:3.20.0CVE-2023-48674derived from NVD
xps 13 9315 firmwareNVD
Affected:< 1.19.1Fixed in:1.19.1CVE-2023-48674derived from NVD
xps 13 plus 9320 firmwareNVD
Affected:< 2.9.0Fixed in:2.9.0CVE-2023-48674derived from NVD
xps 15 9520 firmwareNVD
Affected:< 1.20.0Fixed in:1.20.0CVE-2023-48674derived from NVD
xps 17 9720 firmwareNVD
Affected:< 1.22.0Fixed in:1.22.0CVE-2023-48674derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeChanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Exploit Intelligence

0.49%probability of exploitation in 30 days
39thpercentile

Low risk: more likely to be exploited than 39% of all known CVEs.

References

Vendor Advisory1
Embed a live status badge for CVE-2023-48674
CVE-2023-48674 severity badge

Markdown

[![CVE-2023-48674](https://tridentstack.com/cve/badge/CVE-2023-48674.svg)](https://tridentstack.com/cve/CVE-2023-48674)

HTML

<a href="https://tridentstack.com/cve/CVE-2023-48674"><img src="https://tridentstack.com/cve/badge/CVE-2023-48674.svg" alt="CVE-2023-48674"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-01-31.