7.1
CWE
59 427
Advisory Published
Updated

CVE-2020-5324

First published: Fri Feb 21 2020(Updated: )

Dell Client Consumer and Commercial Platforms contain an Arbitrary File Overwrite Vulnerability. The vulnerability is limited to the Dell Firmware Update Utility during the time window while being executed by an administrator. During this time window, a locally authenticated low-privileged malicious user could exploit this vulnerability by tricking an administrator into overwriting arbitrary files via a symlink attack. The vulnerability does not affect the actual binary payload that the update utility delivers.

Credit: security_alert@emc.com

Affected SoftwareAffected VersionHow to fix
Dell G3 3579 Firmware<1.11.0
Dell G3 3579
Dell G3 3779<1.11.0
Dell G3 3779 Firmware
Dell G3 15 3590 Firmware<1.9.2
Dell G3 15 3590 Firmware
Dell G5 15 5590 Firmware<1.11.1
Dell G5 15 5590 Firmware
Dell G5 5090 Firmware<1.1.2
Dell G5 5090 Firmware
Dell G5 15 5587 Firmware<1.12.2
Dell G5 15 5587
Dell G7 15 (7590) Firmware<1.11.1
Dell G7 15 (7590) Firmware
Dell G7 17 7790 firmware<1.11.1
Dell G7 17 7790 Firmware
Dell G7 7588 Firmware<1.12.2
Dell G7 7588 Firmware
Dell Inspiron 5490 Firmware<1.4.0
Dell Inspiron 14 5490 Firmware
Dell Inspiron 3480 AIO Firmware<1.7.0
Dell Inspiron 3480
Dell Inspiron 3481 Firmware<1.6.0
Dell Inspiron 3481 Firmware
Dell Inspiron 3490 Firmware<1.5.0
Dell Inspiron 3490 Firmware
Dell Inspiron 3493 Firmware<1.4.0
Dell Inspiron 3493 Firmware
Dell Inspiron 3580 Firmware<1.7.0
Dell Inspiron 3580 Firmware
Dell Inspiron 3581 Firmware<1.6.0
Dell Inspiron 3581 Firmware
Dell Inspiron 3583 Firmware<1.7.0
Dell Inspiron 3583 Firmware
Dell Inspiron 3584 Firmware<1.6.0
Dell Inspiron 3584 Firmware
Dell Inspiron 3590 Firmware<1.5.0
Dell Inspiron 3590 Firmware
Dell Inspiron 3593 Firmware<1.4.0
Dell Inspiron 3593 Firmware
Dell Inspiron 3780 Firmware<1.7.0
Dell Inspiron 3780 Firmware
Dell Inspiron 3781 Firmware<1.6.0
Dell Inspiron 3781 Firmware
Dell Inspiron 3790 Firmware<1.5.0
Dell Inspiron 3790 Firmware
Dell Inspiron 3793 Firmware<1.4.0
Dell Inspiron 3793 Firmware
Dell Inspiron 5390 Firmware<1.7.1
Dell Inspiron 5390 Firmware
Dell Inspiron 5391 Firmware<1.3.0
Dell Inspiron 5391 Firmware
Dell Inspiron 5480 Firmware<2.6.1
Dell Inspiron 5480 2-in-1
Dell Inspiron 5481 Firmware<2.6.1
Dell Inspiron 5481 2-in-1
Dell Inspiron 5482 Firmware<=2.6.1
Dell Inspiron 5482 Firmware
Dell Inspiron 5491 AIO Firmware<1.4.0
Dell Inspiron 5491 AIO
Dell Inspiron 5493 Firmware<1.4.0
Dell Inspiron 5493 Firmware
Dell Inspiron 5494 Firmware<1.5.0
Dell Inspiron 5494
Dell Inspiron 5498 Firmware<1.4.0
Dell Inspiron 5498
Dell Inspiron 5580 Firmware<2.6.1
Dell Inspiron 5580 Firmware
Dell Inspiron 15 5582 Firmware<2.6.1
Dell Inspiron 15 5582
Dell Inspiron 5583 Firmware<1.9.1
Dell Inspiron 5583 Firmware
Dell Inspiron 5584 Firmware<1.9.1
Dell Inspiron 5584 Firmware
Dell Inspiron 5590 Firmware<1.4.0
Dell Inspiron 5590 Firmware
Dell Inspiron 5591 Firmware<1.4.0
Dell Inspiron 5591 2-in-1
Dell Inspiron 5593<1.4.0
Dell Inspiron 5593 Firmware
Dell Inspiron 5594 Firmware<1.5.0
Dell Inspiron 5594
Dell Inspiron 5598 Firmware<1.4.0
Dell Inspiron 5598 Firmware
Dell Inspiron 7380 Firmware<1.10.0
Dell Inspiron 7380 Firmware
Dell Inspiron 7386 Firmware<1.7.0
Dell Inspiron 7386 Firmware
Dell Inspiron 7390 Firmware<1.7.1
Dell Inspiron 7390 Firmware
Dell Inspiron 7391 Firmware<1.3.0
Dell Inspiron 7391
Dell Inspiron 7490 Firmware<1.2.1
Dell Inspiron 7490
Dell Inspiron 7580 Firmware<1.10.0
Dell Inspiron 7580 Firmware
Dell Inspiron 7586 Firmware<1.7.0
Dell Inspiron 7586 Firmware
Dell Inspiron 7590 Firmware<1.5.1
Dell Inspiron 7590 Firmware
Dell Inspiron 7591 Firmware<1.5.1
Dell Inspiron 7591 2-in-1
Dell Inspiron 7786 Firmware<1.7.0
Dell Inspiron 7786 Firmware
Dell Inspiron 7791 Firmware<1.3.1
Dell Inspiron 7791 Firmware
Dell Latitude 3301 Firmware<1.7.0
Dell Latitude 3301 Firmware
Dell Latitude 3300 Firmware<1.7.2
Dell Latitude 3300 Firmware
Dell Latitude 3311 Firmware<1.3.0
Dell Latitude 3311 Firmware
Dell Latitude 3390 Firmware<1.12.0
Dell Latitude 3390 Firmware
Dell Latitude 3400 Firmware<1.9.2
Dell Latitude 3400 Firmware
Dell Latitude 3490 Firmware<1.11.0
Dell Latitude 3490 Firmware
Dell Latitude 3500 Firmware<1.9.2
Dell Latitude 3500 Firmware
Dell Latitude 3590 Firmware<1.11.0
Dell Latitude 3590 Firmware
Dell Latitude 5290 Firmware<1.12.1
Dell Latitude 5290 2-in-1
Dell Latitude 5300 Firmware<1.7.2
Dell Latitude 5300 Firmware
Dell Latitude 5400 Firmware<1.6.3
Dell Latitude 5400 Firmware
Dell Latitude 5401 Firmware<1.6.1
Dell Latitude 5401 Firmware
Dell Latitude Rugged 5420 Firmware<1.8.5
Dell Latitude Rugged 5420 Firmware
Dell Latitude Rugged 5424 Firmware<1.8.5
Dell Latitude Rugged 5424 Firmware
Dell Latitude 5490 Firmware<1.12.1
Dell Latitude 5490 Firmware
Dell Latitude 5491 Firmware<1.11.1
Dell Latitude 5491 Firmware
Dell Latitude 5500 Firmware<1.6.3
Dell Latitude 5500 Firmware
Dell Latitude 5501 Firmware<1.6.1
Dell Latitude 5501 Firmware
Dell Latitude 5590 Firmware<1.12.1
Dell Latitude 5590 Firmware
Dell Latitude 5591 Firmware<1.11.1
Dell Latitude 5591 Firmware
Dell Latitude 7200 Firmware<1.6.2
Dell Latitude 7200 2-in-1
Dell Latitude 7220 Rugged Extreme Tablet<1.3.1
Dell Latitude 7220 Rugged Extreme Firmware
Dell Latitude 7220 Rugged Extreme Tablet Firmware<1.3.1
Dell Latitude Rugged 7220 Extreme
Dell Latitude 7290 Firmware<1.13.1
Dell Latitude 7290 Firmware
Dell Latitude 7300 Firmware<1.6.1
Dell Latitude 7300 Firmware
Dell Latitude 7390 Firmware<1.13.1
Dell Latitude 7390 Firmware
Dell Latitude 7400 Firmware<1.6.1
Dell Latitude 7400 Firmware
Dell Latitude 7424 Rugged Extreme Firmware<1.8.5
Dell Latitude 7424 Rugged Extreme Firmware
Dell Latitude 7490 Firmware<1.13.1
Dell Latitude 7490 Firmware
Dell Precision 3530 Firmware<1.11.1
Dell Precision 3530 Firmware
Dell Precision 3540 Firmware<1.6.3
Dell Precision 3540 Firmware
Dell Precision 3541 Firmware<1.6.1
Dell Precision 3541 Firmware
Dell Precision 5530 Firmware<1.14.0
Dell Precision 5530 Firmware
Dell Precision 5540 Firmware<1.6.3
Dell Precision 5540 Firmware
Dell Precision 7530 Firmware<1.12.1
Dell Precision 7530 Firmware
Dell Precision 7540 Firmware<1.5.1
Dell Precision 7540 Firmware
Dell Precision 7730 Firmware<1.12.1
Dell Precision 7730
Dell Precision 7740 Firmware<1.5.1
Dell Precision 7740 Firmware
Dell Vostro 7580 Firmware<1.12.2
Dell Vostro 15 7580
Dell Vostro 3480 Firmware<1.7.0
Dell Vostro 3480 Firmware
Dell Vostro 3481 Firmware<1.6.0
Dell Vostro 3481 Firmware
Dell Vostro 3490 Firmware<1.5.0
Dell Vostro 3490 Firmware
Dell Vostro 3580 Firmware<1.7.0
Dell Vostro 3580 Firmware
Dell Vostro 3581 Firmware<1.6.0
Dell Vostro 3581 Firmware
Dell Vostro 3583 Firmware<1.7.0
Dell Vostro 3583 Firmware
Dell Vostro 3584<1.6.0
Dell Vostro 3584 Firmware
Dell Vostro 3590 Firmware<1.5.0
Dell Vostro 3590 Firmware
Dell Vostro 5390 Firmware<1.7.1
Dell Vostro 5390 Firmware
Dell Vostro 5391 Firmware<1.3.0
Dell Vostro 5391 Firmware
Dell Vostro 5481 Firmware<2.6.1
Dell Vostro 5481 Firmware
Dell Vostro 5490 Firmware<1.4.0
Dell Vostro 5490 Firmware
Dell Vostro 5581 Firmware<2.6.1
Dell Vostro 5581 Firmware
Dell Vostro 5590 Firmware<1.4.0
Dell Vostro 5590 Firmware
Dell Vostro 7590 Firmware<1.5.1
Dell Vostro 7590 Firmware
Dell Wyse 5070 Thin Client Firmware<1.4.2
Dell Wyse 5070 Thin Client Firmware
Dell Wyse 5470 All-in-One Firmware<1.2.1
Dell Wyse 5470 Thin Client
Dell XPS 9380 Firmware<1.9.1
Dell XPS 13
Dell XPS 15 2-in-1 9575 Firmware<1.10.0
Dell XPS 15 2-in-1 9575
Dell XPS 15 7590 Firmware<1.4.0
Dell XPS 7590
Dell XPS 9570 Firmware<1.14.0
Dell XPS 15 9570 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2020-5324?

    CVE-2020-5324 is an Arbitrary File Overwrite Vulnerability found in Dell Client Consumer and Commercial Platforms during firmware updates.

  • How severe is CVE-2020-5324?

    CVE-2020-5324 has a severity level of 4.4 (high).

  • Which Dell platforms are affected by CVE-2020-5324?

    Dell platforms such as Dell G3, G5, G7, Inspiron, Latitude, Precision, Vostro, Wyse, and Xps are affected by CVE-2020-5324.

  • Is there a fix available for CVE-2020-5324?

    Users can refer to the Dell support article with reference number SLN320348 for guidance on addressing CVE-2020-5324.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203