What is CVE-2020-26186?

CVE-2020-26186 is a medium-severity vulnerability in Dell Cpg Bios, classified under CWE-642. CVSS score: 6.8/10. Published 2021-01-08.

How severe is CVE-2020-26186?

Medium severity. CVSS v3 base score is 6.8 out of 10.

Vulnerability in Dell Cpg Bios

CVE-2020-26186

Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwriting the RuntimeServices structure to execu…

EPSS: 0.000 (12.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Dell Cpg Bios — versions unspecified

Weakness classification (CWE)

CWE-642

References

www.dell.com/support/kbdoc/en-us/000180645/dsa-2020-247-dell-client-platform-se… (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-26186?: CVE-2020-26186 is a medium-severity vulnerability in Dell Cpg Bios, classified under CWE-642. CVSS score: 6.8/10. Published 2021-01-08.
How severe is CVE-2020-26186?: Medium severity. CVSS v3 base score is 6.8 out of 10.