Rewterz Threat Alert – SmokeLoader Malware – Active IOCs
December 4, 2023Rewterz Threat Alert – AsyncRAT – Active IOCs
December 4, 2023Rewterz Threat Alert – SmokeLoader Malware – Active IOCs
December 4, 2023Rewterz Threat Alert – AsyncRAT – Active IOCs
December 4, 2023Severity
Medium
Analysis Summary
CVE-2023-28032, CVE-2023-28044, CVE-2023-28061, CVE-2023-28029, CVE-2023-28033
Dell BIOS could allow a local authenticated attacker to bypass security restrictions, caused by improper validation of user-supplied input. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass authentication and modify a UEFI variable.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-28032
- CVE-2023-28044
- CVE-2023-28061
- CVE-2023-28029
- CVE-2023-28033
Affected Vendors
Dell
Affected Products
- Dell BIOS
Remediation
Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.