What is CVE-2020-5326?

CVE-2020-5326 is a medium-severity vulnerability in Dell Client Consumer And Commercial Platforms, classified under Missing Authentication for Critical Function. CVSS score: 6.1/10. Published 2020-02-21.

How severe is CVE-2020-5326?

Medium severity. CVSS v3 base score is 6.1 out of 10.

Auth bypass in Dell Client Consumer And Commercial Platforms

CVE-2020-5326

Affected Dell Client platforms contain a BIOS Setup configuration authentication bypass vulnerability in the pre-boot Intel Rapid Storage Response Technology (iRST) Manager menu. An attacker with physical access to the system could perform…

Vulnerability class: Broken Authentication

EPSS: 0.001 (17.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.1 (Medium). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:H.

Affected products

Dell Client Consumer And Commercial Platforms — versions https://www.dell.com/support/article/SLN320337

Weakness classification (CWE)

CWE-306 — Missing Authentication for Critical Function

References

www.dell.com/support/article/SLN320337 (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-5326?: CVE-2020-5326 is a medium-severity vulnerability in Dell Client Consumer And Commercial Platforms, classified under Missing Authentication for Critical Function. CVSS score: 6.1/10. Published 2020-02-21.
How severe is CVE-2020-5326?: Medium severity. CVSS v3 base score is 6.1 out of 10.