Unknown
CVE-2020-5363
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-5363
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Select Dell Client Consumer and Commercial platforms include an issue that allows the BIOS Admin password to be changed through Dell’s manageability interface without knowledge of the current BIOS Admin password. This could potentially allow an unauthorized actor, with physical access and/or OS administrator privileges to the device, to gain privileged access to the platform and the hard drive.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- latitude 5300 2-in-1 firmware,
- latitude 5300 firmware,
- latitude 5400 firmware,
- latitude 5401 firmware,
- latitude 5500 firmware,
- latitude 5501 firmware,
- latitude 7200 2 in 1 firmware,
- latitude 7220 firmware,
- latitude 7220ex rugged extreme tablet firmware,
- latitude 7300 firmware,
- latitude 7400 firmware,
- precision 3540 firmware,
- precision 3541 firmware,
- precision 7540 firmware,
- precision 7740 firmware,
- xps 13 9300 firmware,
- xps 7390 2-in-1 firmware,
- xps 7590 firmware
Weaknesses
References
Miscellaneous
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
