CVE-2023-28064

Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

Published: Jun 23, 2023
Updated: Nov 16, 2025
CVE: CVE-2023-28064
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 3.5
AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
dell / alienware_m15_r6_firmware	-	1.22.1
dell / alienware_m15_r7_firmware	-	1.17.0
dell / chengming_3900_firmware	-	1.13.0
dell / chengming_3901_firmware	-	1.13.0
dell / g15_5510_firmware	-	1.19.0
dell / g15_5511_firmware	-	1.22.1
dell / g15_5520_firmware	-	1.17.0
dell / inspiron_14_5418_firmware	-	2.19.1
dell / inspiron_14_5410_firmware	-	2.19.1
dell / inspiron_14_plus_7420_firmware	-	1.13.0
dell / inspiron_15_3511_firmware	-	1.22.1
dell / inspiron_15_5510_firmware	-	2.19.1
dell / inspiron_15_5518_firmware	-	2.19.1
dell / inspiron_16_7620_2-in-1_firmware	-	1.12.1
dell / inspiron_16_plus_7620_firmware	-	1.13.0
dell / inspiron_3511_firmware	-	1.22.1
dell / inspiron_3520_firmware	-	1.15.0
dell / inspiron_3891_firmware	-	1.18.1
dell / inspiron_3910_firmware	-	1.13.0
dell / inspiron_5310_firmware	-	2.20.1
dell / inspiron_5320_firmware	-	1.11.1
dell / inspiron_5410_firmware	-	2.19.1
dell / inspiron_5420_firmware	-	1.14.1
dell / inspiron_5620_firmware	-	1.14.1
dell / inspiron_7420_firmware	-	1.12.1
dell / inspiron_7510_firmware	-	1.16.1
dell / inspiron_7610_firmware	-	1.16.1
dell / latitude_3120_firmware	-	1.17.2
dell / latitude_3320_firmware	-	1.22.2
dell / latitude_3330_firmware	-	1.13.0
dell / latitude_3420_firmware	-	1.29.0
dell / latitude_3430_firmware	-	1.10.1
dell / latitude_3520_firmware	-	1.29.0
dell / latitude_3530_firmware	-	1.10.1
dell / latitude_5320_firmware	-	1.28.1
dell / latitude_5330_firmware	-	1.13.1
dell / latitude_5520_firmware	-	1.28.1
dell / latitude_5530_firmware	-	1.13.2
dell / latitude_5531_firmware	-	1.14.1
dell / latitude_7330_firmware	-	1.14.1
dell / latitude_7430_firmware	-	1.14.1
dell / latitude_7530_firmware	-	1.14.1
dell / latitude_rugged_5430_firmware	-	1.18.1
dell / latitude_rugged_7330_firmware	-	1.18.1
dell / optiplex_3000_firmware	-	1.13.1
dell / optiplex_5000_firmware	-	1.13.1
dell / optiplex_5400_firmware	-	1.1.28
dell / optiplex_7000_firmware	-	1.13.1
dell / optiplex_7000_oem_firmware	-	1.13.1
dell / optiplex_7400_firmware	-	1.1.28
dell / optiplex_7410_all-in-one_firmware	-	1.4.1
dell / precision_3560_firmware	-	1.28.1
dell / precision_3570_firmware	-	1.13.2
dell / precision_3571_firmware	-	1.14.1
dell / precision_5760_firmware	-	1.20.1
dell / precision_5770_firmware	-	1.17.1
dell / vostro_3420_firmware	-	1.15.0
dell / vostro_3510_firmware	-	1.22.1
dell / vostro_3520_firmware	-	1.15.0
dell / vostro_3910_firmware	-	1.13.0
dell / vostro_5310_firmware	-	2.20.1
dell / vostro_5320_firmware	-	1.11.1
dell / vostro_5410_firmware	-	2.19.1
dell / vostro_5510_firmware	-	2.19.1
dell / vostro_5620_firmware	-	1.14.1
dell / vostro_7510_firmware	-	1.16.1
dell / vostro_7620_firmware	-	1.13.0
dell / xps_13_9315_2-in-1_firmware	-	1.8.1
dell / xps_17_9710_firmware	-	1.20.1
dell / xps_17_9720_firmware	-	1.17.1

https://www.dell.com/support/kbdoc/en-us/000214778/dsa-2023-174-dell-client-bios-security-update-for-an-out-of-bounds-write-vulnerability

Vulnerability Database

309,136

CVE-2023-28064

Deep Security Visibility Without the Complexity