CVE-2020-5348

Dell Latitude 7202 Rugged Tablet BIOS versions prior to A28 contain a UAF vulnerability in EFI_BOOT_SERVICES in system management mode. A local unauthenticated attacker may exploit this vulnerability by overwriting the EFI_BOOT_SERVICES structure to execute arbitrary code in system management mode.
References
Link Resource
https://www.dell.com/support/article/SLN320792 Vendor Advisory
Configurations

Configuration 1


Information

Published : 2020-04-04 12:15

Updated : 2020-04-06 06:13


NVD link : CVE-2020-5348

Mitre link : CVE-2020-5348

Products Affected
CWE