PT-2020-18442 · Dell · Dell Inspiron 7352 Bios
Published
2020-09-02
·
Updated
2020-09-14
·
CVE-2020-5379
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Dell Inspiron 7352 BIOS versions prior to A12
Description
The issue allows a local attacker with access to system memory to exploit a UEFI BIOS Boot Services overwrite vulnerability. This can be done by overwriting the
EFI BOOT SERVICES structure, enabling the execution of arbitrary code in System Management Mode (SMM).Recommendations
For Dell Inspiron 7352 BIOS versions prior to A12, update the BIOS to version A12 or later to resolve the issue.
Fix
Protection Mechanism Failure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Inspiron 7352 Bios