CWE
122 119
Advisory Published
Updated

CVE-2023-32461: Buffer Overflow

First published: Fri Sep 15 2023(Updated: )

Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially escalate privileges.  

Credit: security_alert@emc.com

Affected SoftwareAffected VersionHow to fix
Dell PowerEdge r660xs firmware<1.5.6
Dell PowerEdge r660 firmware
Dell PowerEdge R760 firmware<1.5.6
Dell PowerEdge R760 firmware
Dell PowerEdge<1.5.6
Dell PowerEdge c6620 firmware
Dell PowerEdge MX760c Firmware<1.5.6
Dell PowerEdge mx760c firmware
Dell PowerEdge R860 Firmware<1.5.6
Dell PowerEdge r860 firmware
Dell PowerEdge R960 Firmware<1.5.6
Dell PowerEdge R960 Firmware
Dell PowerEdge hs5610<1.5.6
Dell PowerEdge HS5610
Dell PowerEdge hs5620 firmware<1.5.6
Dell PowerEdge hs5620 firmware
Dell PowerEdge r660xs firmware<1.5.6
Dell PowerEdge r660xs firmware
Dell PowerEdge R760xs firmware<1.5.6
Dell PowerEdge R760xs firmware
Dell PowerEdge R760xd2 firmware<1.5.6
Dell PowerEdge R760xd2 firmware
Dell PowerEdge T560 Firmware<1.5.6
Dell PowerEdge t560 firmware
Dell PowerEdge R760xa Firmware<1.1.3
Dell PowerEdge r760xa firmware
Dell PowerEdge Xe9680 Firmware<1.1.3
Dell PowerEdge Xe9680 Firmware
Dell PowerEdge XR5610 Firmware<1.1.4
Dell PowerEdge xr5610 firmware
Dell PowerEdge XR8620T Firmware<1.1.3
Dell PowerEdge XR8620T Firmware
Dell PowerEdge XR7620 Firmware<1.5.6
Dell PowerEdge XR7620 Firmware
Dell PowerEdge XE8640<1.2.5
Dell PowerEdge XE8640 firmware
Dell PowerEdge R6615 firmware<1.3.11
Dell PowerEdge R6615 firmware
Dell PowerEdge R7615 Firmware<1.3.11
Dell PowerEdge R7615 Firmware
Dell PowerEdge r6625<1.3.11
Dell PowerEdge r6625
Dell PowerEdge r7625 firmware<1.3.11
Dell PowerEdge r7625 firmware
Dell PowerEdge R650xs Firmware<1.10.2
Dell PowerEdge R650 firmware
Dell PowerEdge R750 Firmware<1.10.2
Dell PowerEdge R750
Dell PowerEdge R750XA Firmware<1.10.2
Dell PowerEdge R750XA Firmware
Dell PowerEdge c6520 firmware<1.10.2
Dell PowerEdge C6520
Dell PowerEdge MX750c Firmware<1.10.2
Dell PowerEdge MX750c Firmware
Dell PowerEdge R550<1.10.2
Dell PowerEdge R550
Dell PowerEdge R450 Firmware<1.10.2
Dell PowerEdge R450 Firmware
Dell PowerEdge R650 firmware<1.10.2
Dell PowerEdge R650xs Firmware
Dell PowerEdge R750xs firmware<1.10.2
Dell PowerEdge R750xs Firmware
Dell PowerEdge T550 firmware<1.10.2
Dell PowerEdge T550 firmware
Dell XR11 Firmware<1.10.2
Dell PowerEdge XR11 Firmware
Dell XR12 Firmware<1.10.2
Dell PowerEdge XR12 Firmware
Dell T150 Firmware<1.6.3
Dell PowerEdge T150
Dell T350 Firmware<1.6.3
Dell PowerEdge T350 Firmware
Dell PowerEdge R250 Firmware<1.6.3
Dell PowerEdge R250
Dell PowerEdge R350<1.6.3
Dell PowerEdge R350 Firmware
Dell PowerEdge XR4510C Firmware<1.10.4
Dell PowerEdge XR4510C Firmware
Dell PowerEdge xr4520c firmware<1.10.4
Dell PowerEdge xr4520c firmware=1.10.4
Dell PowerEdge xr4520c firmware
Dell PowerEdge r6515 firmware<2.11.4
Dell PowerEdge r6515 firmware
Dell PowerEdge R6525<2.11.3
Dell PowerEdge R6525
Dell PowerEdge R7515 Firmware<2.11.4
Dell PowerEdge R7515 Firmware
Dell PowerEdge R7525<2.11.3
Dell PowerEdge R7525
Dell PowerEdge c6525<2.11.3
Dell PowerEdge c6525
Dell XE8545 Firmware<2.11.3
Dell PowerEdge xe8545 firmware
Dell EMC XC Core XC450 Firmware<1.11.2
Dell EMC XC Core XC450 Firmware
Dell EMC XC Core XC650 Firmware<1.11.2
Dell EMC XC650
Dell EMC XC Series XC750<1.11.2
Dell EMC XC Series XC750
Dell EMC XC Core XC750XA<1.11.2
Dell EMC XC Core XC750XA
Dell EMC XC Core XC6520 Firmware<1.11.2
Dell EMC XC Core XC6520 Firmware
Dell EMC XC Core XC7525 Firmware<2.11.3
Dell EMC XC Core XC7525 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2023-32461?

    CVE-2023-32461 is considered a critical vulnerability due to its potential to allow local users to escalate privileges and corrupt memory.

  • How can I fix CVE-2023-32461?

    To fix CVE-2023-32461, update the Dell PowerEdge BIOS firmware to the latest version available from Dell's support site.

  • Which Dell PowerEdge models are affected by CVE-2023-32461?

    The affected Dell PowerEdge models include R660, R760, C6620, MX760C, R860, R960, and other models listed in the advisory.

  • What type of vulnerability is CVE-2023-32461?

    CVE-2023-32461 is a buffer overflow vulnerability that may lead to memory corruption.

  • Can CVE-2023-32461 be exploited remotely?

    CVE-2023-32461 requires local access with high privileges to exploit, making remote exploitation unlikely.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203