cvedb.io
CVE-2023-25537
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2023-05-22T11:15:09.333 · Last modified 2026-06-17T05:41:26.760

Summary

Dell PowerEdge 14G server BIOS versions prior to 2.18.1 and Dell Precision BIOS versions prior to 2.18.2, contain an Out of Bounds write vulnerability. A local attacker with low privileges could potentially exploit this vulnerability leading to exposure of some SMRAM stack/data/code in System Management Mode, leading to arbitrary code execution or escalation of privilege.

Affected products

dell — poweredge_r740_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.