CVE-2020-5342

Summary

Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run an arbitrary executable with administrative privileges on the affected system.

Affected Software

VendorProductVersion RangeStatus
DellDell Digital Delivery (Cirrus)unspecified < 3.5.2013.0affected

Weaknesses

  • CWE-276: CWE-276: Incorrect Default Permissions

ADP Enrichment

CVE Program Container

Additional References

References