7.1
HIGH
CVE-2020-5324
Dell Client Firmware Update Utility Privilege Escalation Arbitrary File Overwrite Vulnerability
Description

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.

INFO

Published Date :

Feb. 21, 2020, 3:15 p.m.

Last Modified :

Sept. 14, 2021, 12:41 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

5.2

Exploitability Score :

1.8
Affected Products

The following products are affected by CVE-2020-5324 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Dell g3_15_3590_firmware
2 Dell g3_3579_firmware
3 Dell g3_3779_firmware
4 Dell g5_15_5590_firmware
5 Dell g5_5090_firmware
6 Dell g7_15_7590_firmware
7 Dell g7_17_7790_firmware
8 Dell inspiron_3480_firmware
9 Dell inspiron_3481_firmware
10 Dell inspiron_3490_firmware
11 Dell inspiron_3493_firmware
12 Dell inspiron_3580_firmware
13 Dell inspiron_3581_firmware
14 Dell inspiron_3583_firmware
15 Dell inspiron_3584_firmware
16 Dell inspiron_3590_firmware
17 Dell inspiron_3593_firmware
18 Dell inspiron_3780_firmware
19 Dell inspiron_3781_firmware
20 Dell inspiron_3790_firmware
21 Dell inspiron_3793_firmware
22 Dell inspiron_5391_firmware
23 Dell inspiron_5493_firmware
24 Dell inspiron_5494_firmware
25 Dell inspiron_5498_firmware
26 Dell inspiron_5590_firmware
27 Dell inspiron_5593_firmware
28 Dell inspiron_5594_firmware
29 Dell inspiron_5598_firmware
30 Dell inspiron_7391_firmware
31 Dell inspiron_7490_firmware
32 Dell inspiron_7590_firmware
33 Dell inspiron_7591_firmware
34 Dell inspiron_7791_firmware
35 Dell latitude_3300_firmware
36 Dell latitude_3301_firmware
37 Dell latitude_3400_firmware
38 Dell latitude_3490_firmware
39 Dell latitude_3500_firmware
40 Dell latitude_3590_firmware
41 Dell latitude_5290_firmware
42 Dell latitude_5300_firmware
43 Dell latitude_5400_firmware
44 Dell latitude_5401_firmware
45 Dell latitude_5420_rugged_firmware
46 Dell latitude_5424_rugged_firmware
47 Dell latitude_5490_firmware
48 Dell latitude_5491_firmware
49 Dell latitude_5500_firmware
50 Dell latitude_5501_firmware
51 Dell latitude_5590_firmware
52 Dell latitude_5591_firmware
53 Dell latitude_7290_firmware
54 Dell latitude_7300_firmware
55 Dell latitude_7390_firmware
56 Dell latitude_7400_firmware
57 Dell latitude_7424_rugged_extreme_firmware
58 Dell latitude_7490_firmware
59 Dell precision_3530_firmware
60 Dell precision_3540_firmware
61 Dell precision_3541_firmware
62 Dell precision_5530_firmware
63 Dell precision_5540_firmware
64 Dell precision_7530_firmware
65 Dell precision_7540_firmware
66 Dell precision_7730_firmware
67 Dell precision_7740_firmware
68 Dell vostro_3480_firmware
69 Dell vostro_3481_firmware
70 Dell vostro_3490_firmware
71 Dell vostro_3580_firmware
72 Dell vostro_3581_firmware
73 Dell vostro_3583_firmware
74 Dell vostro_3584_firmware
75 Dell vostro_3590_firmware
76 Dell vostro_5391_firmware
77 Dell vostro_5490_firmware
78 Dell vostro_5590_firmware
79 Dell vostro_7590_firmware
80 Dell wyse_5470_firmware
81 Dell xps_13_9380_firmware
82 Dell xps_15_7590_firmware
83 Dell g5_5587_firmware
84 Dell g7_7588_firmware
85 Dell inspiron_5480_firmware
86 Dell inspiron_5481_firmware
87 Dell inspiron_5482_firmware
88 Dell inspiron_5580_firmware
89 Dell inspiron_5582_firmware
90 Dell inspiron_7380_firmware
91 Dell inspiron_7386_firmware
92 Dell inspiron_7580_firmware
93 Dell inspiron_7586_firmware
94 Dell inspiron_7786_firmware
95 Dell latitude_3390_firmware
96 Dell vostro_5481_firmware
97 Dell vostro_5581_firmware
98 Dell inspiron_5491_firmware
99 Dell latitude_7200_firmware
100 Dell vostro_15_7580_firmware
101 Dell xps_15_9575_firmware
102 Dell latitude_7220ex_rugged_extreme_tablet_firmware
103 Dell inspiron_14_5490_firmware
104 Dell inspiron_5390_firmware
105 Dell inspiron_5583_firmware
106 Dell inspiron_5584_firmware
107 Dell vostro_5390_firmware
108 Dell wyse_5070_thin_client_firmware
109 Dell xps_15_9570_firmware
110 Dell inspiron_5591_firmware
111 Dell inspiron_7390_firmware
112 Dell latitude_3311_firmware
113 Dell latitude_7220_rugged_extreme_tablet_firmware
: Total Affected Vendor : 1 | Products : 113
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2020-5324.

URL Resource
https://www.dell.com/support/article/SLN320348 Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2020-5324 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2020-5324 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Reanalysis by [email protected]

    Sep. 14, 2021

    Action Type Old Value New Value
    Removed CWE NIST CWE-20
    Added CWE NIST CWE-59
  • Initial Analysis by [email protected]

    Mar. 03, 2020

    Action Type Old Value New Value
    Added CVSS V2 Metadata Victim must voluntarily interact with attack mechanism
    Added CVSS V2 NIST (AV:L/AC:H/Au:N/C:N/I:P/A:P)
    Added CVSS V3.1 NIST AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
    Changed Reference Type https://www.dell.com/support/article/SLN320348 No Types Assigned https://www.dell.com/support/article/SLN320348 Vendor Advisory
    Added CWE NIST CWE-20
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_3579_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:g3_3579:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_3779_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:g3_3779:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g3_15_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:g3_15_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_15_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g5_15_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_5090_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2 OR cpe:2.3:h:dell:g5_5090:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g5_5587_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:g5_5587:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_15_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g7_15_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_17_7790_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:g7_17_7790:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:g7_7588_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:g7_7588:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_14_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_14_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3493_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3493:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3593_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3593:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3780_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_3780:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3781_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:inspiron_3781:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3790_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_3790:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_3793_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_3793:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:inspiron_5390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:inspiron_5391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5482_firmware:*:*:*:*:*:*:*:* versions up to (including) 2.6.1 OR cpe:2.3:h:dell:inspiron_5482:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5491_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5491:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5493_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5493:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5494_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_5494:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5498_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5498:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5582_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:inspiron_5582:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:inspiron_5583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:inspiron_5584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5593_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5593:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5594_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:inspiron_5594:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_5598_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:inspiron_5598:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7380_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:inspiron_7380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7386_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7386:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:inspiron_7390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:inspiron_7391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.2.1 OR cpe:2.3:h:dell:inspiron_7490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:inspiron_7580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7586_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7586:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:inspiron_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:inspiron_7591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7786_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:inspiron_7786:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:inspiron_7791_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:inspiron_7791:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3301_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:latitude_3301:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.2 OR cpe:2.3:h:dell:latitude_3300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3311_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:latitude_3311:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.0 OR cpe:2.3:h:dell:latitude_3390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:latitude_3400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:latitude_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3500_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.2 OR cpe:2.3:h:dell:latitude_3500:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.0 OR cpe:2.3:h:dell:latitude_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.2 OR cpe:2.3:h:dell:latitude_5300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:latitude_5400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5401_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_5401:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5420_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_5420_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5424_rugged_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_5424_rugged:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5491_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:latitude_5491:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5500_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:latitude_5500:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5501_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_5501:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:latitude_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_5591_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:latitude_5591:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7200_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.2 OR cpe:2.3:h:dell:latitude_7200:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7220_rugged_extreme_tablet_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:latitude_7220_rugged_extreme_tablet:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7220ex_rugged_extreme_tablet_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.1 OR cpe:2.3:h:dell:latitude_7220ex_rugged_extreme_tablet:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7290_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7290:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7300_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_7300:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7400_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:latitude_7400:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7424_rugged_extreme_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.8.5 OR cpe:2.3:h:dell:latitude_7424_rugged_extreme:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:latitude_7490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.13.1 OR cpe:2.3:h:dell:latitude_7490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.11.1 OR cpe:2.3:h:dell:precision_3530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:precision_3540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_3541_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.1 OR cpe:2.3:h:dell:precision_3541:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:precision_5530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_5540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.3 OR cpe:2.3:h:dell:precision_5540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7530_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:precision_7530:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7540_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:precision_7540:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7730_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.1 OR cpe:2.3:h:dell:precision_7730:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:precision_7740_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:precision_7740:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_15_7580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.12.2 OR cpe:2.3:h:dell:vostro_15_7580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3480_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3480:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:vostro_3490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3580_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3580:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3583_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.0 OR cpe:2.3:h:dell:vostro_3583:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3584_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.0 OR cpe:2.3:h:dell:vostro_3584:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_3590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.0 OR cpe:2.3:h:dell:vostro_3590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5390_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.7.1 OR cpe:2.3:h:dell:vostro_5390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5391_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.3.0 OR cpe:2.3:h:dell:vostro_5391:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5481_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5481:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5490_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:vostro_5490:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5581_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 2.6.1 OR cpe:2.3:h:dell:vostro_5581:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_5590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:vostro_5590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:vostro_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.5.1 OR cpe:2.3:h:dell:vostro_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5070_thin_client_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.2 OR cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:wyse_5470_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.2.1 OR cpe:2.3:h:dell:wyse_5470:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_13_9380_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.9.1 OR cpe:2.3:h:dell:xps_13_9380:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_9575_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.10.0 OR cpe:2.3:h:dell:xps_15_9575:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_7590_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.4.0 OR cpe:2.3:h:dell:xps_15_7590:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:dell:xps_15_9570_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 1.14.0 OR cpe:2.3:h:dell:xps_15_9570:-:*:*:*:*:*:*:*
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2020-5324 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2020-5324 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

0.04 }} 0.00%

score

0.10264

percentile

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: