CVE-2020-5362
CVE-2020-5362
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 jun 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS administrator privileges, could bypass the BIOS Administrator authentication to restore BIOS Setup configuration to default values.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:H
Productos afectados
Dell · Dell Client Consumer and Commercial platforms¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →