What is CVE-2020-5324?

CVE-2020-5324 is a high-severity vulnerability in Dell Client Consumer And Commercial Platforms, classified under Uncontrolled Search Path Element. CVSS score: 7.1/10. Published 2020-02-21.

How severe is CVE-2020-5324?

High severity. CVSS v3 base score is 7.1 out of 10.

Vulnerability in Dell Client Consumer And Commercial Platforms

CVE-2020-5324

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this…

EPSS: 0.001 (27.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H.

Affected products

Dell Client Consumer And Commercial Platforms — versions https://www.dell.com/support/article/SLN320348

Weakness classification (CWE)

CWE-427 — Uncontrolled Search Path Element

References

www.dell.com/support/article/SLN320348 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-5324?: CVE-2020-5324 is a high-severity vulnerability in Dell Client Consumer And Commercial Platforms, classified under Uncontrolled Search Path Element. CVSS score: 7.1/10. Published 2020-02-21.
How severe is CVE-2020-5324?: High severity. CVSS v3 base score is 7.1 out of 10.