exploitDog

CVE-2020-5388

Опубликовано: 10 нояб. 2020

Источник: nvd

CVSS3: 6.9

CVSS2: 4.4

EPSS Низкий

Описание

Dell Inspiron 15 7579 2-in-1 BIOS versions prior to 1.31.0 contain an Improper SMM communication buffer verification vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:dell:inspiron_15_7579_firmware:*:*:*:*:*:*:*:*

Версия до 1.31.0 (исключая)

cpe:2.3:h:dell:inspiron_15_7579:-:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00045

Низкий

6.9 Medium

CVSS3

4.4 Medium

CVSS2

Дефекты

CWE-119

CWE-119

Связанные уязвимости

GHSA-mm45-c98x-rq98

github

больше 3 лет назад

Dell Inspiron 15 7579 2-in-1 BIOS versions prior to 1.31.0 contain an Improper SMM communication buffer verification vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.

EPSS

Процентиль: 14%

0.00045

Низкий

6.9 Medium

CVSS3

4.4 Medium

CVSS2

Дефекты

CWE-119

CWE-119