CVE-2020-5343

Summary

Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019, may contain an insecure inherited permissions vulnerability. A local authenticated malicious user with low privileges could exploit this vulnerability to gain unauthorized access on the root folder.

Affected Software

VendorProductVersion RangeStatus
DellCPG SWunspecified < Dell Client platforms restored using a Dell OS recovery image downloaded before December 20, 2019affected

Weaknesses

  • CWE-277: CWE-277: Insecure Inherited Permissions

ADP Enrichment

CVE Program Container

Additional References

References