CVE-2023-32467

Name of the Vulnerable Software and Affected Versions: Dell Edge Gateway BIOS versions 3200 and 5200

Description: The issue is related to an out-of-bounds write vulnerability in the Dell Edge Gateway BIOS. A local authenticated malicious user with high privileges could potentially exploit this vulnerability, leading to exposure of some UEFI code, which could result in arbitrary code execution or escalation of privilege. The vulnerability is also associated with incorrect initialization of a resource in the DXE driver of the BIOS firmware.

Recommendations: For versions 3200 and 5200, update the BIOS to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.