CVE-2020-5324
First published: Fri Feb 21 2020(Updated: )
Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell G3 3579 Firmware | <1.11.0 | |
| Dell G3 3579 | ||
| Dell G3 3779 | <1.11.0 | |
| Dell G3 3779 Firmware | ||
| Dell G3 15 3590 Firmware | <1.9.2 | |
| Dell G3 15 3590 Firmware | ||
| Dell G5 15 5590 Firmware | <1.11.1 | |
| Dell G5 15 5590 Firmware | ||
| Dell G5 5090 Firmware | <1.1.2 | |
| Dell G5 5090 Firmware | ||
| Dell G5 15 5587 Firmware | <1.12.2 | |
| Dell G5 15 5587 | ||
| Dell G7 15 (7590) Firmware | <1.11.1 | |
| Dell G7 15 (7590) Firmware | ||
| Dell G7 17 7790 firmware | <1.11.1 | |
| Dell G7 17 7790 Firmware | ||
| Dell G7 7588 Firmware | <1.12.2 | |
| Dell G7 7588 Firmware | ||
| Dell Inspiron 5490 Firmware | <1.4.0 | |
| Dell Inspiron 14 5490 Firmware | ||
| Dell Inspiron 3480 AIO Firmware | <1.7.0 | |
| Dell Inspiron 3480 | ||
| Dell Inspiron 3481 Firmware | <1.6.0 | |
| Dell Inspiron 3481 Firmware | ||
| Dell Inspiron 3490 Firmware | <1.5.0 | |
| Dell Inspiron 3490 Firmware | ||
| Dell Inspiron 3493 Firmware | <1.4.0 | |
| Dell Inspiron 3493 Firmware | ||
| Dell Inspiron 3580 Firmware | <1.7.0 | |
| Dell Inspiron 3580 Firmware | ||
| Dell Inspiron 3581 Firmware | <1.6.0 | |
| Dell Inspiron 3581 Firmware | ||
| Dell Inspiron 3583 Firmware | <1.7.0 | |
| Dell Inspiron 3583 Firmware | ||
| Dell Inspiron 3584 Firmware | <1.6.0 | |
| Dell Inspiron 3584 Firmware | ||
| Dell Inspiron 3590 Firmware | <1.5.0 | |
| Dell Inspiron 3590 Firmware | ||
| Dell Inspiron 3593 Firmware | <1.4.0 | |
| Dell Inspiron 3593 Firmware | ||
| Dell Inspiron 3780 Firmware | <1.7.0 | |
| Dell Inspiron 3780 Firmware | ||
| Dell Inspiron 3781 Firmware | <1.6.0 | |
| Dell Inspiron 3781 Firmware | ||
| Dell Inspiron 3790 Firmware | <1.5.0 | |
| Dell Inspiron 3790 Firmware | ||
| Dell Inspiron 3793 Firmware | <1.4.0 | |
| Dell Inspiron 3793 Firmware | ||
| Dell Inspiron 5390 Firmware | <1.7.1 | |
| Dell Inspiron 5390 Firmware | ||
| Dell Inspiron 5391 Firmware | <1.3.0 | |
| Dell Inspiron 5391 Firmware | ||
| Dell Inspiron 5480 Firmware | <2.6.1 | |
| Dell Inspiron 5480 2-in-1 | ||
| Dell Inspiron 5481 Firmware | <2.6.1 | |
| Dell Inspiron 5481 2-in-1 | ||
| Dell Inspiron 5482 Firmware | <=2.6.1 | |
| Dell Inspiron 5482 Firmware | ||
| Dell Inspiron 5491 AIO Firmware | <1.4.0 | |
| Dell Inspiron 5491 AIO | ||
| Dell Inspiron 5493 Firmware | <1.4.0 | |
| Dell Inspiron 5493 Firmware | ||
| Dell Inspiron 5494 Firmware | <1.5.0 | |
| Dell Inspiron 5494 | ||
| Dell Inspiron 5498 Firmware | <1.4.0 | |
| Dell Inspiron 5498 | ||
| Dell Inspiron 5580 Firmware | <2.6.1 | |
| Dell Inspiron 5580 Firmware | ||
| Dell Inspiron 15 5582 Firmware | <2.6.1 | |
| Dell Inspiron 15 5582 | ||
| Dell Inspiron 5583 Firmware | <1.9.1 | |
| Dell Inspiron 5583 Firmware | ||
| Dell Inspiron 5584 Firmware | <1.9.1 | |
| Dell Inspiron 5584 Firmware | ||
| Dell Inspiron 5590 Firmware | <1.4.0 | |
| Dell Inspiron 5590 Firmware | ||
| Dell Inspiron 5591 Firmware | <1.4.0 | |
| Dell Inspiron 5591 2-in-1 | ||
| Dell Inspiron 5593 | <1.4.0 | |
| Dell Inspiron 5593 Firmware | ||
| Dell Inspiron 5594 Firmware | <1.5.0 | |
| Dell Inspiron 5594 | ||
| Dell Inspiron 5598 Firmware | <1.4.0 | |
| Dell Inspiron 5598 Firmware | ||
| Dell Inspiron 7380 Firmware | <1.10.0 | |
| Dell Inspiron 7380 Firmware | ||
| Dell Inspiron 7386 Firmware | <1.7.0 | |
| Dell Inspiron 7386 Firmware | ||
| Dell Inspiron 7390 Firmware | <1.7.1 | |
| Dell Inspiron 7390 Firmware | ||
| Dell Inspiron 7391 Firmware | <1.3.0 | |
| Dell Inspiron 7391 | ||
| Dell Inspiron 7490 Firmware | <1.2.1 | |
| Dell Inspiron 7490 | ||
| Dell Inspiron 7580 Firmware | <1.10.0 | |
| Dell Inspiron 7580 Firmware | ||
| Dell Inspiron 7586 Firmware | <1.7.0 | |
| Dell Inspiron 7586 Firmware | ||
| Dell Inspiron 7590 Firmware | <1.5.1 | |
| Dell Inspiron 7590 Firmware | ||
| Dell Inspiron 7591 Firmware | <1.5.1 | |
| Dell Inspiron 7591 2-in-1 | ||
| Dell Inspiron 7786 Firmware | <1.7.0 | |
| Dell Inspiron 7786 Firmware | ||
| Dell Inspiron 7791 Firmware | <1.3.1 | |
| Dell Inspiron 7791 Firmware | ||
| Dell Latitude 3301 Firmware | <1.7.0 | |
| Dell Latitude 3301 Firmware | ||
| Dell Latitude 3300 Firmware | <1.7.2 | |
| Dell Latitude 3300 Firmware | ||
| Dell Latitude 3311 Firmware | <1.3.0 | |
| Dell Latitude 3311 Firmware | ||
| Dell Latitude 3390 Firmware | <1.12.0 | |
| Dell Latitude 3390 Firmware | ||
| Dell Latitude 3400 Firmware | <1.9.2 | |
| Dell Latitude 3400 Firmware | ||
| Dell Latitude 3490 Firmware | <1.11.0 | |
| Dell Latitude 3490 Firmware | ||
| Dell Latitude 3500 Firmware | <1.9.2 | |
| Dell Latitude 3500 Firmware | ||
| Dell Latitude 3590 Firmware | <1.11.0 | |
| Dell Latitude 3590 Firmware | ||
| Dell Latitude 5290 Firmware | <1.12.1 | |
| Dell Latitude 5290 2-in-1 | ||
| Dell Latitude 5300 Firmware | <1.7.2 | |
| Dell Latitude 5300 Firmware | ||
| Dell Latitude 5400 Firmware | <1.6.3 | |
| Dell Latitude 5400 Firmware | ||
| Dell Latitude 5401 Firmware | <1.6.1 | |
| Dell Latitude 5401 Firmware | ||
| Dell Latitude Rugged 5420 Firmware | <1.8.5 | |
| Dell Latitude Rugged 5420 Firmware | ||
| Dell Latitude Rugged 5424 Firmware | <1.8.5 | |
| Dell Latitude Rugged 5424 Firmware | ||
| Dell Latitude 5490 Firmware | <1.12.1 | |
| Dell Latitude 5490 Firmware | ||
| Dell Latitude 5491 Firmware | <1.11.1 | |
| Dell Latitude 5491 Firmware | ||
| Dell Latitude 5500 Firmware | <1.6.3 | |
| Dell Latitude 5500 Firmware | ||
| Dell Latitude 5501 Firmware | <1.6.1 | |
| Dell Latitude 5501 Firmware | ||
| Dell Latitude 5590 Firmware | <1.12.1 | |
| Dell Latitude 5590 Firmware | ||
| Dell Latitude 5591 Firmware | <1.11.1 | |
| Dell Latitude 5591 Firmware | ||
| Dell Latitude 7200 Firmware | <1.6.2 | |
| Dell Latitude 7200 2-in-1 | ||
| Dell Latitude 7220 Rugged Extreme Tablet | <1.3.1 | |
| Dell Latitude 7220 Rugged Extreme Firmware | ||
| Dell Latitude 7220 Rugged Extreme Tablet Firmware | <1.3.1 | |
| Dell Latitude Rugged 7220 Extreme | ||
| Dell Latitude 7290 Firmware | <1.13.1 | |
| Dell Latitude 7290 Firmware | ||
| Dell Latitude 7300 Firmware | <1.6.1 | |
| Dell Latitude 7300 Firmware | ||
| Dell Latitude 7390 Firmware | <1.13.1 | |
| Dell Latitude 7390 Firmware | ||
| Dell Latitude 7400 Firmware | <1.6.1 | |
| Dell Latitude 7400 Firmware | ||
| Dell Latitude 7424 Rugged Extreme Firmware | <1.8.5 | |
| Dell Latitude 7424 Rugged Extreme Firmware | ||
| Dell Latitude 7490 Firmware | <1.13.1 | |
| Dell Latitude 7490 Firmware | ||
| Dell Precision 3530 Firmware | <1.11.1 | |
| Dell Precision 3530 Firmware | ||
| Dell Precision 3540 Firmware | <1.6.3 | |
| Dell Precision 3540 Firmware | ||
| Dell Precision 3541 Firmware | <1.6.1 | |
| Dell Precision 3541 Firmware | ||
| Dell Precision 5530 Firmware | <1.14.0 | |
| Dell Precision 5530 Firmware | ||
| Dell Precision 5540 Firmware | <1.6.3 | |
| Dell Precision 5540 Firmware | ||
| Dell Precision 7530 Firmware | <1.12.1 | |
| Dell Precision 7530 Firmware | ||
| Dell Precision 7540 Firmware | <1.5.1 | |
| Dell Precision 7540 Firmware | ||
| Dell Precision 7730 Firmware | <1.12.1 | |
| Dell Precision 7730 | ||
| Dell Precision 7740 Firmware | <1.5.1 | |
| Dell Precision 7740 Firmware | ||
| Dell Vostro 7580 Firmware | <1.12.2 | |
| Dell Vostro 15 7580 | ||
| Dell Vostro 3480 Firmware | <1.7.0 | |
| Dell Vostro 3480 Firmware | ||
| Dell Vostro 3481 Firmware | <1.6.0 | |
| Dell Vostro 3481 Firmware | ||
| Dell Vostro 3490 Firmware | <1.5.0 | |
| Dell Vostro 3490 Firmware | ||
| Dell Vostro 3580 Firmware | <1.7.0 | |
| Dell Vostro 3580 Firmware | ||
| Dell Vostro 3581 Firmware | <1.6.0 | |
| Dell Vostro 3581 Firmware | ||
| Dell Vostro 3583 Firmware | <1.7.0 | |
| Dell Vostro 3583 Firmware | ||
| Dell Vostro 3584 | <1.6.0 | |
| Dell Vostro 3584 Firmware | ||
| Dell Vostro 3590 Firmware | <1.5.0 | |
| Dell Vostro 3590 Firmware | ||
| Dell Vostro 5390 Firmware | <1.7.1 | |
| Dell Vostro 5390 Firmware | ||
| Dell Vostro 5391 Firmware | <1.3.0 | |
| Dell Vostro 5391 Firmware | ||
| Dell Vostro 5481 Firmware | <2.6.1 | |
| Dell Vostro 5481 Firmware | ||
| Dell Vostro 5490 Firmware | <1.4.0 | |
| Dell Vostro 5490 Firmware | ||
| Dell Vostro 5581 Firmware | <2.6.1 | |
| Dell Vostro 5581 Firmware | ||
| Dell Vostro 5590 Firmware | <1.4.0 | |
| Dell Vostro 5590 Firmware | ||
| Dell Vostro 7590 Firmware | <1.5.1 | |
| Dell Vostro 7590 Firmware | ||
| Dell Wyse 5070 Thin Client Firmware | <1.4.2 | |
| Dell Wyse 5070 Thin Client Firmware | ||
| Dell Wyse 5470 All-in-One Firmware | <1.2.1 | |
| Dell Wyse 5470 Thin Client | ||
| Dell XPS 9380 Firmware | <1.9.1 | |
| Dell XPS 13 | ||
| Dell XPS 15 2-in-1 9575 Firmware | <1.10.0 | |
| Dell XPS 15 2-in-1 9575 | ||
| Dell XPS 15 7590 Firmware | <1.4.0 | |
| Dell XPS 7590 | ||
| Dell XPS 9570 Firmware | <1.14.0 | |
| Dell XPS 15 9570 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-5324?
CVE-2020-5324 is an Arbitrary File Overwrite Vulnerability found in Dell Client Consumer and Commercial Platforms during firmware updates.
How severe is CVE-2020-5324?
CVE-2020-5324 has a severity level of 4.4 (high).
Which Dell platforms are affected by CVE-2020-5324?
Dell platforms such as Dell G3, G5, G7, Inspiron, Latitude, Precision, Vostro, Wyse, and Xps are affected by CVE-2020-5324.
Is there a fix available for CVE-2020-5324?
Users can refer to the Dell support article with reference number SLN320348 for guidance on addressing CVE-2020-5324.
- agent/weakness
- agent/type
- agent/references
- agent/author
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell g3 3579 firmware
- canonical/dell g3 3579
- canonical/dell g3 3779
- canonical/dell g3 3779 firmware
- canonical/dell g3 15 3590 firmware
- canonical/dell g5 15 5590 firmware
- canonical/dell g5 5090 firmware
- canonical/dell g5 15 5587 firmware
- canonical/dell g5 15 5587
- canonical/dell g7 15 (7590) firmware
- canonical/dell g7 17 7790 firmware
- canonical/dell g7 7588 firmware
- canonical/dell inspiron 5490 firmware
- canonical/dell inspiron 14 5490 firmware
- canonical/dell inspiron 3480 aio firmware
- canonical/dell inspiron 3480
- canonical/dell inspiron 3481 firmware
- canonical/dell inspiron 3490 firmware
- canonical/dell inspiron 3493 firmware
- canonical/dell inspiron 3580 firmware
- canonical/dell inspiron 3581 firmware
- canonical/dell inspiron 3583 firmware
- canonical/dell inspiron 3584 firmware
- canonical/dell inspiron 3590 firmware
- canonical/dell inspiron 3593 firmware
- canonical/dell inspiron 3780 firmware
- canonical/dell inspiron 3781 firmware
- canonical/dell inspiron 3790 firmware
- canonical/dell inspiron 3793 firmware
- canonical/dell inspiron 5390 firmware
- canonical/dell inspiron 5391 firmware
- canonical/dell inspiron 5480 firmware
- canonical/dell inspiron 5480 2-in-1
- canonical/dell inspiron 5481 firmware
- canonical/dell inspiron 5481 2-in-1
- canonical/dell inspiron 5482 firmware
- version/dell inspiron 5482 firmware/2.6.1
- canonical/dell inspiron 5491 aio firmware
- canonical/dell inspiron 5491 aio
- canonical/dell inspiron 5493 firmware
- canonical/dell inspiron 5494 firmware
- canonical/dell inspiron 5494
- canonical/dell inspiron 5498 firmware
- canonical/dell inspiron 5498
- canonical/dell inspiron 5580 firmware
- canonical/dell inspiron 15 5582 firmware
- canonical/dell inspiron 15 5582
- canonical/dell inspiron 5583 firmware
- canonical/dell inspiron 5584 firmware
- canonical/dell inspiron 5590 firmware
- canonical/dell inspiron 5591 firmware
- canonical/dell inspiron 5591 2-in-1
- canonical/dell inspiron 5593
- canonical/dell inspiron 5593 firmware
- canonical/dell inspiron 5594 firmware
- canonical/dell inspiron 5594
- canonical/dell inspiron 5598 firmware
- canonical/dell inspiron 7380 firmware
- canonical/dell inspiron 7386 firmware
- canonical/dell inspiron 7390 firmware
- canonical/dell inspiron 7391 firmware
- canonical/dell inspiron 7391
- canonical/dell inspiron 7490 firmware
- canonical/dell inspiron 7490
- canonical/dell inspiron 7580 firmware
- canonical/dell inspiron 7586 firmware
- canonical/dell inspiron 7590 firmware
- canonical/dell inspiron 7591 firmware
- canonical/dell inspiron 7591 2-in-1
- canonical/dell inspiron 7786 firmware
- canonical/dell inspiron 7791 firmware
- canonical/dell latitude 3301 firmware
- canonical/dell latitude 3300 firmware
- canonical/dell latitude 3311 firmware
- canonical/dell latitude 3390 firmware
- canonical/dell latitude 3400 firmware
- canonical/dell latitude 3490 firmware
- canonical/dell latitude 3500 firmware
- canonical/dell latitude 3590 firmware
- canonical/dell latitude 5290 firmware
- canonical/dell latitude 5290 2-in-1
- canonical/dell latitude 5300 firmware
- canonical/dell latitude 5400 firmware
- canonical/dell latitude 5401 firmware
- canonical/dell latitude rugged 5420 firmware
- canonical/dell latitude rugged 5424 firmware
- canonical/dell latitude 5490 firmware
- canonical/dell latitude 5491 firmware
- canonical/dell latitude 5500 firmware
- canonical/dell latitude 5501 firmware
- canonical/dell latitude 5590 firmware
- canonical/dell latitude 5591 firmware
- canonical/dell latitude 7200 firmware
- canonical/dell latitude 7200 2-in-1
- canonical/dell latitude 7220 rugged extreme tablet
- canonical/dell latitude 7220 rugged extreme firmware
- canonical/dell latitude 7220 rugged extreme tablet firmware
- canonical/dell latitude rugged 7220 extreme
- canonical/dell latitude 7290 firmware
- canonical/dell latitude 7300 firmware
- canonical/dell latitude 7390 firmware
- canonical/dell latitude 7400 firmware
- canonical/dell latitude 7424 rugged extreme firmware
- canonical/dell latitude 7490 firmware
- canonical/dell precision 3530 firmware
- canonical/dell precision 3540 firmware
- canonical/dell precision 3541 firmware
- canonical/dell precision 5530 firmware
- canonical/dell precision 5540 firmware
- canonical/dell precision 7530 firmware
- canonical/dell precision 7540 firmware
- canonical/dell precision 7730 firmware
- canonical/dell precision 7730
- canonical/dell precision 7740 firmware
- canonical/dell vostro 7580 firmware
- canonical/dell vostro 15 7580
- canonical/dell vostro 3480 firmware
- canonical/dell vostro 3481 firmware
- canonical/dell vostro 3490 firmware
- canonical/dell vostro 3580 firmware
- canonical/dell vostro 3581 firmware
- canonical/dell vostro 3583 firmware
- canonical/dell vostro 3584
- canonical/dell vostro 3584 firmware
- canonical/dell vostro 3590 firmware
- canonical/dell vostro 5390 firmware
- canonical/dell vostro 5391 firmware
- canonical/dell vostro 5481 firmware
- canonical/dell vostro 5490 firmware
- canonical/dell vostro 5581 firmware
- canonical/dell vostro 5590 firmware
- canonical/dell vostro 7590 firmware
- canonical/dell wyse 5070 thin client firmware
- canonical/dell wyse 5470 all-in-one firmware
- canonical/dell wyse 5470 thin client
- canonical/dell xps 9380 firmware
- canonical/dell xps 13
- canonical/dell xps 15 2-in-1 9575 firmware
- canonical/dell xps 15 2-in-1 9575
- canonical/dell xps 15 7590 firmware
- canonical/dell xps 7590
- canonical/dell xps 9570 firmware
- canonical/dell xps 15 9570 firmware