CVE-2023-32472

Name of the Vulnerable Software and Affected Versions Dell Edge Gateway BIOS versions 3200 and 5200

Description The issue is related to an out-of-bounds write vulnerability in the System Management Mode (SMM) of the BIOS firmware. This could be exploited by a local authenticated malicious user with high privileges, potentially leading to arbitrary code execution or escalation of privilege. The vulnerability is associated with incorrect initialization of a resource.

Recommendations For versions 3200 and 5200, update the BIOS to a version that fixes the out-of-bounds write vulnerability. As a temporary workaround, consider restricting access to the System Management Mode to minimize the risk of exploitation.