7.1
HIGH
CVE-2020-5324
Dell Client Firmware Update Utility Privilege Escalation Arbitrary File Overwrite Vulnerability
Description

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.

INFO

Published Date :

Feb. 21, 2020, 3:15 p.m.

Last Modified :

Nov. 21, 2024, 5:33 a.m.

Remotely Exploitable :

No

Impact Score :

5.2

Exploitability Score :

1.8
Affected Products

The following products are affected by CVE-2020-5324 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Dell g3_15_3590_firmware
2 Dell g3_3579_firmware
3 Dell g3_3779_firmware
4 Dell g5_15_5590_firmware
5 Dell g5_5090_firmware
6 Dell g7_15_7590_firmware
7 Dell g7_17_7790_firmware
8 Dell inspiron_3480_firmware
9 Dell inspiron_3481_firmware
10 Dell inspiron_3490_firmware
11 Dell inspiron_3493_firmware
12 Dell inspiron_3580_firmware
13 Dell inspiron_3581_firmware
14 Dell inspiron_3583_firmware
15 Dell inspiron_3584_firmware
16 Dell inspiron_3590_firmware
17 Dell inspiron_3593_firmware
18 Dell inspiron_3780_firmware
19 Dell inspiron_3781_firmware
20 Dell inspiron_3790_firmware
21 Dell inspiron_3793_firmware
22 Dell inspiron_5391_firmware
23 Dell inspiron_5493_firmware
24 Dell inspiron_5494_firmware
25 Dell inspiron_5498_firmware
26 Dell inspiron_5590_firmware
27 Dell inspiron_5593_firmware
28 Dell inspiron_5594_firmware
29 Dell inspiron_5598_firmware
30 Dell inspiron_7391_firmware
31 Dell inspiron_7490_firmware
32 Dell inspiron_7590_firmware
33 Dell inspiron_7591_firmware
34 Dell inspiron_7791_firmware
35 Dell latitude_3300_firmware
36 Dell latitude_3301_firmware
37 Dell latitude_3400_firmware
38 Dell latitude_3490_firmware
39 Dell latitude_3500_firmware
40 Dell latitude_3590_firmware
41 Dell latitude_5290_firmware
42 Dell latitude_5300_firmware
43 Dell latitude_5400_firmware
44 Dell latitude_5401_firmware
45 Dell latitude_5420_rugged_firmware
46 Dell latitude_5424_rugged_firmware
47 Dell latitude_5490_firmware
48 Dell latitude_5491_firmware
49 Dell latitude_5500_firmware
50 Dell latitude_5501_firmware
51 Dell latitude_5590_firmware
52 Dell latitude_5591_firmware
53 Dell latitude_7290_firmware
54 Dell latitude_7300_firmware
55 Dell latitude_7390_firmware
56 Dell latitude_7400_firmware
57 Dell latitude_7424_rugged_extreme_firmware
58 Dell latitude_7490_firmware
59 Dell precision_3530_firmware
60 Dell precision_3540_firmware
61 Dell precision_3541_firmware
62 Dell precision_5530_firmware
63 Dell precision_5540_firmware
64 Dell precision_7530_firmware
65 Dell precision_7540_firmware
66 Dell precision_7730_firmware
67 Dell precision_7740_firmware
68 Dell vostro_3480_firmware
69 Dell vostro_3481_firmware
70 Dell vostro_3490_firmware
71 Dell vostro_3580_firmware
72 Dell vostro_3581_firmware
73 Dell vostro_3583_firmware
74 Dell vostro_3584_firmware
75 Dell vostro_3590_firmware
76 Dell vostro_5391_firmware
77 Dell vostro_5490_firmware
78 Dell vostro_5590_firmware
79 Dell vostro_7590_firmware
80 Dell wyse_5470_firmware
81 Dell xps_13_9380_firmware
82 Dell xps_15_7590_firmware
83 Dell g5_5587_firmware
84 Dell g7_7588_firmware
85 Dell inspiron_5480_firmware
86 Dell inspiron_5481_firmware
87 Dell inspiron_5482_firmware
88 Dell inspiron_5580_firmware
89 Dell inspiron_5582_firmware
90 Dell inspiron_7380_firmware
91 Dell inspiron_7386_firmware
92 Dell inspiron_7580_firmware
93 Dell inspiron_7586_firmware
94 Dell inspiron_7786_firmware
95 Dell latitude_3390_firmware
96 Dell vostro_5481_firmware
97 Dell vostro_5581_firmware
98 Dell inspiron_5491_firmware
99 Dell latitude_7200_firmware
100 Dell vostro_15_7580_firmware
101 Dell xps_15_9575_firmware
102 Dell latitude_7220ex_rugged_extreme_tablet_firmware
103 Dell inspiron_14_5490_firmware
104 Dell inspiron_5390_firmware
105 Dell inspiron_5583_firmware
106 Dell inspiron_5584_firmware
107 Dell vostro_5390_firmware
108 Dell wyse_5070_thin_client_firmware
109 Dell xps_15_9570_firmware
110 Dell inspiron_5591_firmware
111 Dell inspiron_7390_firmware
112 Dell latitude_3311_firmware
113 Dell latitude_7220_rugged_extreme_tablet_firmware
114 Dell inspiron_7590
115 Dell inspiron_7591
116 Dell g5_5090
117 Dell inspiron_3480
118 Dell inspiron_3493
119 Dell inspiron_3580
120 Dell inspiron_3593
121 Dell inspiron_3793
122 Dell inspiron_5493
123 Dell inspiron_5593
124 Dell inspiron_7490
125 Dell latitude_3300
126 Dell latitude_3301
127 Dell latitude_3400
128 Dell latitude_3500
129 Dell latitude_5290
130 Dell latitude_5300
131 Dell latitude_5400
132 Dell latitude_5401
133 Dell latitude_5420_rugged
134 Dell latitude_5424_rugged
135 Dell latitude_5490
136 Dell latitude_5491
137 Dell latitude_5500
138 Dell latitude_5501
139 Dell latitude_5590
140 Dell latitude_5591
141 Dell latitude_7290
142 Dell latitude_7300
143 Dell latitude_7390
144 Dell latitude_7400
145 Dell latitude_7424_rugged_extreme
146 Dell latitude_7490
147 Dell precision_3530
148 Dell precision_3540
149 Dell precision_3541
150 Dell precision_5530
151 Dell precision_5540
152 Dell precision_7530
153 Dell precision_7540
154 Dell precision_7730
155 Dell precision_7740
156 Dell vostro_3480
157 Dell vostro_3580
158 Dell vostro_3583
159 Dell vostro_3590
160 Dell wyse_5470
161 Dell xps_15_7590
162 Dell g5_5587
163 Dell g7_7588
164 Dell vostro_15_7580
165 Dell g3_3579
166 Dell g3_3779
167 Dell inspiron_3481
168 Dell inspiron_3583
169 Dell inspiron_3581
170 Dell inspiron_3584
171 Dell inspiron_3780
172 Dell inspiron_3781
173 Dell inspiron_5480
174 Dell inspiron_5481
175 Dell inspiron_5482
176 Dell inspiron_5580
177 Dell inspiron_5582
178 Dell inspiron_7380
179 Dell inspiron_7386
180 Dell inspiron_7580
181 Dell inspiron_7586
182 Dell inspiron_7786
183 Dell latitude_3390
184 Dell latitude_3490
185 Dell latitude_3590
186 Dell vostro_3581
187 Dell vostro_3584
188 Dell vostro_5481
189 Dell vostro_5581
190 Dell g3_15_3590
191 Dell g5_15_5590
192 Dell g7_15_7590
193 Dell g7_17_7790
194 Dell inspiron_14_5490
195 Dell inspiron_3490
196 Dell inspiron_3590
197 Dell inspiron_3790
198 Dell inspiron_5390
199 Dell inspiron_5391
200 Dell inspiron_5491
201 Dell inspiron_5494
202 Dell inspiron_5498
203 Dell inspiron_5583
204 Dell inspiron_5584
205 Dell inspiron_5590
206 Dell inspiron_5591
207 Dell inspiron_5594
208 Dell inspiron_5598
209 Dell inspiron_7390
210 Dell inspiron_7391
211 Dell inspiron_7791
212 Dell latitude_3311
213 Dell latitude_7200
214 Dell latitude_7220_rugged_extreme_tablet
215 Dell latitude_7220ex_rugged_extreme_tablet
216 Dell vostro_3481
217 Dell vostro_3490
218 Dell vostro_5390
219 Dell vostro_5391
220 Dell vostro_5490
221 Dell vostro_5590
222 Dell vostro_7590
223 Dell wyse_5070_thin_client
224 Dell xps_13_9380
225 Dell xps_15_9575
226 Dell xps_15_9570
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2020-5324.

URL Resource
https://www.dell.com/support/article/SLN320348 Vendor Advisory
https://www.dell.com/support/article/SLN320348 Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2020-5324 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2020-5324 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Nov. 21, 2024

    Action Type Old Value New Value
    Added Reference https://www.dell.com/support/article/SLN320348
  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Reanalysis by [email protected]

    Sep. 14, 2021

    Action Type Old Value New Value
    Removed CWE NIST CWE-20
    Added CWE NIST CWE-59
  • Initial Analysis by [email protected]

    Mar. 03, 2020

    Action Type Old Value New Value
    Added CVSS V2 Metadata Victim must voluntarily interact with attack mechanism
    Added CVSS V2 NIST (AV:L/AC:H/Au:N/C:N/I:P/A:P)
    Added CVSS V3.1 NIST AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
    Changed Reference Type https://www.dell.com/support/article/SLN320348 No Types Assigned https://www.dell.com/support/article/SLN320348 Vendor Advisory
    Added CWE NIST CWE-20
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_3579_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:g3_3579:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_3779_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:g3_3779:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_15_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:g3_15_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_15_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g5_15_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_5090_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2 OR cpe:2.3:h:dell:g5_5090:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_5587_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:g5_5587:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_15_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g7_15_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_17_7790_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g7_17_7790:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_7588_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:g7_7588:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_14_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_14_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3493_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3493:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3593_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3593:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3780_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3780:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3781_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3781:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3790_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3790:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3793_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3793:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:inspiron_5390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:inspiron_5391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5482_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.6.1 OR cpe:2.3:h:dell:inspiron_5482:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5491_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5491:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5493_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5493:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5494_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_5494:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5498_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5498:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5582_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5582:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:inspiron_5583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:inspiron_5584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5593_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5593:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5594_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_5594:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5598_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5598:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7380_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:inspiron_7380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7386_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7386:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:inspiron_7390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:inspiron_7391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.2.1 OR cpe:2.3:h:dell:inspiron_7490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:inspiron_7580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7586_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7586:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:inspiron_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:inspiron_7591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7786_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7786:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7791_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:inspiron_7791:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3301_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:latitude_3301:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.2 OR cpe:2.3:h:dell:latitude_3300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3311_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:latitude_3311:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.0 OR cpe:2.3:h:dell:latitude_3390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:latitude_3400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:latitude_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3500_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:latitude_3500:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:latitude_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.2 OR cpe:2.3:h:dell:latitude_5300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:latitude_5400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5401_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_5401:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5420_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_5420_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5424_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_5424_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5491_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:latitude_5491:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5500_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:latitude_5500:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5501_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_5501:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:latitude_5591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7200_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.2 OR cpe:2.3:h:dell:latitude_7200:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7220_rugged_extreme_tablet_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:latitude_7220_rugged_extreme_tablet:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7220ex_rugged_extreme_tablet_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:latitude_7220ex_rugged_extreme_tablet:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_7300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_7400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7424_rugged_extreme_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_7424_rugged_extreme:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:precision_3530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:precision_3540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3541_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:precision_3541:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:precision_5530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:precision_5540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:precision_7530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:precision_7540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7730_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:precision_7730:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7740_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:precision_7740:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_15_7580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:vostro_15_7580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:vostro_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:vostro_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:vostro_5390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:vostro_5391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:vostro_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:vostro_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:vostro_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5070_thin_client_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.2 OR cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5470_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.2.1 OR cpe:2.3:h:dell:wyse_5470:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_13_9380_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:xps_13_9380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_9575_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:xps_15_9575:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:xps_15_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_9570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:xps_15_9570:-:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2020-5324 is associated with the following CWEs:

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.04 }} 0.00%

score

0.10264

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability